XenMobile LDAP Settings: Bad Request

XenMobile LDAP Settings: Bad Request

book

Article ID: CTX235388

calendar_today

Updated On:

Description

When attempting to configure an LDAP server in XenMobile, "Bad Request" is shown in the web console.
LDAP connection is attempted on port 389 (plain text).

Ping to the LDAP server is successful. Connection is successful.

XenMobile Debug Logs show the following:

2018-05-18T13:09:08.526+0000 |   |  INFO | http-nio-14443-exec-23 | com.citrix.cg.identity.ldap.LdapManager | Check Primary server 'xxx' Connectivity

2018-05-18T13:09:08.738+0000 |   | ERROR | http-nio-14443-exec-23 | com.citrix.cg.identity.ldap.LdapManager | User 'xxx@xxx' bind failed with domain 'XXX' Reason:[LDAP: error code 8 - 00002028: LdapErr: DSID-0C090256, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v3839 ]

2018-05-18T13:09:08.739+0000 |   | ERROR | http-nio-14443-exec-23 | com.citrix.cg.bo.GenericUserListMgr | Failed adding userlist. Domain Name:XXX.

com.citrix.cg.exception.BOException: Cannot connect. Try again

Resolution

Refer to the following Microsoft Knowledge Base article to resolve the issue: FAST ESP/ Unable to use Active Directory accounts for Authentication / Login Fails with LdapErr: DSID-0C0901FC .
 

Problem Cause

TLS/SSL settings.
Powered by Wolken Software