LDAP Signing on windows server 2008 and higher

LDAP Signing on windows server 2008 and higher

The customer is trying to connect to a windows server 2008 domain controller and is getting :
javax.naming.AuthenticationNotSupportedException: [LDAP: error code 8 - 00002028: LdapErr: DSID-0C0901FC, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v1772 ]
 
Currently webnetwork is not configured to handle this new requirement. Some workarounds are to change a registry setting on the dc to disable LDAP signing.

Browse to the HKLMSoftwareMicrosoftWindows
CurrentVersionAdmin-DebugADsOpenObjectFlags key on the client that
is running the administrative tool. Create a DWORD entry called
ADsOpenObjectFlags and set it to one of the following values:
1 To disable LDAP signing
2 To disable LDAP encryption
3 To disable both LDAP signing and LDAP encryption

Also, read the following article on making these changes with MMC
http://www.articlesbase.com/software-articles/h1-concept-of-ldap-signing-in-windows-server-2008-1687386.html
 

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...

      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...

      • Related Articles

      • LDAP tracking on windows server

        How can I track ldap communication on Windows server?   The following URLs give the information on how to track LDAP communication on a windows server. ...

      • Microsoft requiring LDAP channel binding and LDAP signing with 2020 update

        Issue Microsoft Advisory ADV190023: Microsoft is planning to push out an update in March 2020 that will require LDAP channel binding and LDAP signing for LDAP connections. (Please note, Microsoft initially planned to push the change in January.) ...

      • LDAP Response Read Timed Out

        Issue After upgrading to 6.4.7.x, customer is experiencing various LDAP timeouts. One example: unable to search for user's to add to link/tile objects from webAdmin's Link-Menu Admin interface. Two seconds after clicking the search button, a stack ...

      • How can I check if my Microsoft Active Directory Domain controller / LDAP Server has SSL ?

        The following URL has a nice write up about the Microsoft Tool called LDP.exe http://www.computerperformance.co.uk/w2k3/utilities/ldp.htm You can download ldp.zip directly from here : http://www.computerperformance.co.uk/ScriptsGuy/ldp.zip or copy ...

      • Install wnSSOClient on Windows Server 2003/2008/2012

        How do I install the wnssoclient on windows server 2003, 2008/2012? For windows 2003: Copy the wnssoclient.exe and swssolibrary.dll files the c:\windows\system32\ directory on the windows 2003 terminal server. On the stoneware relay: Edit the ...