Symantec IGA

  • 1.  Error Creating New AD endpoint

    Posted Oct 23, 2015 10:53 AM

    We have installed CA IDM 12.6 with all components on one Vm for testing purposes.

     

    We are setting up the provissioning server and trying to add a remote Active Directory endpoint from the Provisioning Manager.

     

    And we were getting an error saying "Failed to activate connector on proxy connector server: Server Down"

     

    so we been looking on the wiki and found that we may need to import to the Connector server the CA Certificate from the AD Server. and we did so

     

    Now when trying to create the endpoint is returning this error "Failed to activate connector on proxy connector server: Confidentiality Required"

     

    Any ideas on how to solve this so we can add our AD endpoint??

     

    Regards



  • 2.  Re: Error Creating New AD endpoint
    Best Answer

    Broadcom Employee
    Posted Oct 25, 2015 05:12 AM

    Jean Franco,

     

    This message means that the Provisioning Server is trying to connect to the AD Domain Controller using SSL.

    As a first step, to make sure you have connectivity and can see the details from the end point, open the endpoint properties, and then click on teh security tab.

    What probably have the "Use LDAP - SSL encryption" selected.

    Select the "Do not use SSL" radio button and save the change.

    Try to connect again.

    If your AD supports connections which are not encrypted, there will be no problem;

    I am attaching a screenshot for your convenience.

     

    Untitled.png

     

    Once you have the endpoint setup you can then test using SSL.

    My guess is that either the AD is not setup correctly to handle SSL or the certificate was not imported correctly to the provisioning sever.

     

    If you still encounter difficulties, please feel free to open a support case.