Unable to add secure LDAP server to the Symantec Endpoint Protection Manager
search cancel

Unable to add secure LDAP server to the Symantec Endpoint Protection Manager

book

Article ID: 165159

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

Unable to add secure LDAP server to the Symantec Endpoint Protection Manager.

Per ConnectDirectoryServer-0.log:
2017-03-29 12:06:55.897 THREAD 7567 WARNING: LdapUtils>> connect: Exception... 
Duration: 0.024s (24.0ms)
2017-03-29 12:06:55.898 THREAD 7567 WARNING: javax.naming.CommunicationException: 
simple bind failed: <LDAP Server>:636 [Root exception is 
javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: 
Certificates does not conform to algorithm constraints]

Environment

SEPM 14.x

Cause

The certificate used by the LDAP Server was using RSASSA-PPS Signature Algorithm.

Resolution

Rebuild the PKI environment to use sha256RSA Signature Algorithm.

Powered by Wolken Software