Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
217
Views
0
Helpful
0
Replies

On-Prem LDAPS Domain Controller Renamed

matthew.rand
Level 1
Level 1

‎09-08-2023 12:57 PM

Recently our higher changed the name of our DC's and didn't let us know until after the fact.  As a result we are not able to log into our On-Prem server.  "Your username and/or password does not match our records, kindly try again. If the problem persists, please use 'Forgot Password', or contact your System Administrator."  

I am able to ssh but the same account does not allow me to access the web.  I did a log capture:


[INFO] Session expiring outcome=success
`Redis#exists(key)` will return an Integer in redis-rb 4.3. `exists?` returns a boolean, you should use it instead. To opt-in to the new behavior now you can set Redis.exists_retur)
[active_model_serializers] Rendered ActiveModel::Serializer::Null with Hash (0.17ms)
method=GET path=/sessions/get_user format=json controller=SessionsController action=get_user status=200 duration=8.77 view=0.94 db=1.49 params={"controller"=>"sessions", "action"=>6
192.164.34.33 - - [08/Sep/2023:19:30:38 +0000] "GET /backend/sessions/get_user HTTP/1.1" 304 0 "https://192.164.34.3:8443/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.3"
(identity) Callback phase initiated.
(identity) Authentication failure! invalid_credentials encountered.
[active_model_serializers] Rendered ActiveModel::Serializer::Null with Hash (0.07ms)
method=POST path=/auth/identity/callback format=json controller=SessionsController action=failure status=200 duration=3.52 view=0.38 db=0.73 params={"username"=>"eod.nhoj", 6
192.164.34.33 - - [08/Sep/2023:19:30:54 +0000] "POST /backend/auth/identity/callback HTTP/1.1" 200 72 "https://192.164.34.3:8443/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKi"
2023/09/08 19:30:54 [error] 38#38: *877 connect() failed (111: Connection refused) while connecting to upstream, client: 192.164.34.33, server: , request: "POST /backend/auth/ldap/ca"
2023/09/08 19:30:54 [warn] 38#38: *877 upstream server temporarily disabled while connecting to upstream, client: 192.164.34.33, server: , request: "POST /backend/auth/ldap/callback "
(ldap) Setup endpoint detected, running now.
(ldap) Callback phase initiated.
not verifying SSL hostname of LDAPS server 'higherDC.da.mf.rn.com:636'
(ldap) Authentication failure! invalid_credentials: OmniAuth::Strategies::LDAP::InvalidCredentialsError, Invalid credentials for eod.nhoj
[WARN] Logging in user client_ip=192.164.34.33 outcome=failure
[active_model_serializers] Rendered ActiveModel::Serializer::Null with Hash (0.08ms)
method=POST path=/auth/ldap/callback format=json controller=SessionsController action=failure status=200 duration=77.80 view=0.76 db=60.01 params={"username"=>"eod.nhoj", "p6
192.164.34.33 - - [08/Sep/2023:19:30:54 +0000] "POST /backend/auth/ldap/callback HTTP/1.1" 200 193 "https://192.164.34.3:8443/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/5"
2023/09/08 19:31:02 [INFO] web/router.go:45 RAW REQUEST BODY: <?xml version="1.0" encoding="UTF-8"?>

Any assistance would be welcomed.

 

Matt

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents