Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1657
Views
0
Helpful
2
Replies

Cisco Smart Software Manger LDAP TLS Handshake failed

alois.heilmaier
Level 1
Level 1

‎08-18-2020 02:23 PM

Hi, 


- configured ldap on the smart software manager on prem  (cssm).

- but on submitting the configuration I get a connection error.

- wireshark trace shows an Internal Server Error (80) (sent from the client)

- it does not matter if I enable or disable cert validation on cssm.

- There is no log for ldap on the system. Seems that ldap is hidden in docker container "backend"

- parsing /var/log/messages, does not show any useful information.


Any hints on how to debug ldap and tls connectoin errors on the system ?

 

Best regards

Alois

Labels:
0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎08-18-2020 11:47 PM

 

 - Usually due to a cipher-mismatch issue, which client+version are you using ?

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

alois.heilmaier
Level 1
Level 1
In response to marce1000

‎08-20-2020 05:38 AM

unfortunately there is a match in the cipher suite. (uses 0x0033 TLS_DHE_RSA_WITH_AES_128_CBC_SHA)

 

I thought about the many extions parameters the client provides, but if the server can't fulfull them, i think there will be an error on the server side.

 

Due to the error I upgraded vom 08-202004 to the newest 08-202006 Version of cisco smart software manager.

 

Preview file
200 KB
Preview file
18 KB
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card