![]() Openssl s_client -connect | openssl x509 -noout -dates Openssl s_client -connect :636Īlso make sure that the certificate is not expired or otherwise invalid (ex: Incorrect Common Name or Subject Alternative Name) This will check if the Cloud Access Connector can reach the domain controller over port TCP 636. The easiest way to check is to make a TLS connection on the LDAPS port to the domain controller from the Cloud Access Connector VM. Resolution Check that LDAPS is enabled on the Domain Controller, the LDAPS certificate is valid and not expired and the Domain Controller is using the correct certificate. This error can also come if we use domain controller machine's IP address while updating or installing cloud access connector.If the certificate has been changed or recently renewed the Cloud Access Connector will need to be updated to fetch the latest certificate. The Cloud Access Connector will only fetch the Domain Controller's certificate at the time of install or update. ![]() The error generally means that the Cloud Access Connector was unable to communicate with the Domain Controller due to an LDAPS certificate issue.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |