Support Article

LDAP authentication issue with Pega 7.1.7

SA-36520

Summary



LDAP authentication and binding issue occurs when user workstation restriction is added in the service account used for binding.


Error Messages



javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A8, comment: AcceptSecurityContext error, data 531, v1db1 ]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
at javax.naming.InitialContext.init(Unknown Source)
at javax.naming.InitialContext.<init>(Unknown Source)
at javax.naming.directory.InitialDirContext.<init>(Unknown Source)
at com.pegarules.generated.activity.ra_action_authenticationldapverifycredentials_0bfe63ce91204a65ee4f9eb08580ca47.step2_circum0(ra_action_authenticationldapverifycredentials_0bfe63ce91204a65ee4f9eb08580ca47.java:686)
......

Steps to Reproduce



Not Applicable


Root Cause



A third-party product issue.

Resolution



Contact your Active Directory team to configure proper user workstation security.

Published April 13, 2017 - Updated May 9, 2017

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.