Guest

Preview Tool

Cisco Bug: CSCun38471 - UCSM support for ldap referrals with SSL

Last Modified

Mar 29, 2017

Products (1)

  • Cisco Unified Computing System

Known Affected Releases

2.2(1b)B

Description (partial)

Symptom:
This Senario of configuring AD with UCSM over SSL has not been qualified from Engineering.

Conditions:
There is DC 10.106.22.64 and sub DC 10.106.22.114. Both the DCs have the Global Catalog installed.

Ex: I've a user 'gopis' in DC(10.106.22.64). and kala in sub DC 10.106.22.114. 

User was able to authenticate with the DC where the user was created, ie. user gopis is authenticated with 10.106.22.64 and user kala with 10.106.22.114 setup. Using port 3268 with ipaddress and hostname.

At the moment I'm facing some problem while testing with SSL option enabled. SSL/TLS library initialisation is failing. This usually occurs if the configured hostname and the hostname in certificate are different. 
Also when I've tried to authenticate users of sub DC(10.106.22.114) with DC(10.106.22.54) authentication failed with 'Invalid credentials'. 

I need to verify the hostname is same in certificate and in UCSM, if not need to redeploy certificate services.
Also I need to verify the Global catalog properties being replicated, to check if the password is part of the replicated properties or not.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.