LDAP Signing on windows server 2008 and higher

LDAP Signing on windows server 2008 and higher

The customer is trying to connect to a windows server 2008 domain controller and is getting :
javax.naming.AuthenticationNotSupportedException: [LDAP: error code 8 - 00002028: LdapErr: DSID-0C0901FC, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v1772 ]
 
Currently webnetwork is not configured to handle this new requirement. Some workarounds are to change a registry setting on the dc to disable LDAP signing.

Browse to the HKLMSoftwareMicrosoftWindows
CurrentVersionAdmin-DebugADsOpenObjectFlags key on the client that
is running the administrative tool. Create a DWORD entry called
ADsOpenObjectFlags and set it to one of the following values:
1 To disable LDAP signing
2 To disable LDAP encryption
3 To disable both LDAP signing and LDAP encryption

Also, read the following article on making these changes with MMC
http://www.articlesbase.com/software-articles/h1-concept-of-ldap-signing-in-windows-server-2008-1687386.html
 

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Change Reset Password Button Text

        Change the text of the "Reset Password" button on the UW Login Page How to change the text of the Reset Password button on the Login Page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants ...

      • Remove Reset Password Button From Login Page

        Remove the Reset Password Button from the Login Page How to remove the Reset Password button from the Unified Workspace login page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants Expand ...

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        As of January 31st 2024, Lenovo Unified Workspace (formerly Stoneware WebNetwork) is no longer supported. This means that we no longer provide licenses, downloads, updates, patches, or technical assistance for this product. If you have any questions ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • Related Articles

      • LDAP tracking on windows server

        How can I track ldap communication on Windows server?   The following URLs give the information on how to track LDAP communication on a windows server. ...

      • Microsoft requiring LDAP channel binding and LDAP signing with 2020 update

        Issue Microsoft Advisory ADV190023: Microsoft is planning to push out an update in March 2020 that will require LDAP channel binding and LDAP signing for LDAP connections. (Please note, Microsoft initially planned to push the change in January.) ...

      • LDAP Response Read Timed Out

        Issue After upgrading to 6.4.7.x, customer is experiencing various LDAP timeouts. One example: unable to search for user's to add to link/tile objects from webAdmin's Link-Menu Admin interface. Two seconds after clicking the search button, a stack ...

      • How can I check if my Microsoft Active Directory Domain controller / LDAP Server has SSL ?

        The following URL has a nice write up about the Microsoft Tool called LDP.exe http://www.computerperformance.co.uk/w2k3/utilities/ldp.htm You can download ldp.zip directly from here : http://www.computerperformance.co.uk/ScriptsGuy/ldp.zip or copy ...

      • Install wnSSOClient on Windows Server 2003/2008/2012

        How do I install the wnssoclient on windows server 2003, 2008/2012? For windows 2003: Copy the wnssoclient.exe and swssolibrary.dll files the c:\windows\system32\ directory on the windows 2003 terminal server. On the stoneware relay: Edit the ...