Description
Credential validation fails for a directory under System > Settings > Authentication > LDAP when the Security Protocol option is set to either SSL or STARTTLS. The LDAP server has a valid SSL certificate installed.
Scope
Version: 8.x
Solution
Ensure the appliance is authenticating the connection using the name of the server and not the IP address. Unless the LDAP server's certificate includes the IP address as an alternate name, the connection will not be trusted.
1. Navigate to System > Settings > Authentication > LDAP.
2. In the Directory model, verify the name matches the name on the certificate used by the LDAP server (example: dc.mycompany.com)
3. Click the Additional Configuration checkbox.
4. Click the Connect by name checkbox.
5. Click Validate Credentials to confirm changes are correct.
6. Click OK to save.
Related Articles
Technical Note: LDAP server credential validation fails