ILMT 9.2.23.0 update - AD userid's fail to login

imerku · April 1, 2021, 3:08pm

Hello,
I have recently updated our ILMT to 9.2.23.0 (via BigFix).
After that LDAP (ActiveDirectory) user’s cannot login any more, local users can.
I have opened a case with IBM.
For now they have asked me to revert the unboundid-ldapsdk-se.jar LDAP client library back to V4.0.13, but that did not solve the issue.

Has anyone any experience with the latest 9.2.23.0 update and LDAP/AD user authentication?

This is a line from the logs:
javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
Could that mean that ILMT does not trust the AD server certificate?

Thanks, Igor

imerku · April 15, 2021, 7:41am

Just to give an update.
At last IBM produced a solution updating two files (some libs) and adding parameters to jvm.options.
So, I would recommend to open a case with IBM Support and maybe mention case no. TS005312290.
Cheers, Igor

matthdar · May 14, 2021, 9:49am

Yes, I have the same issue since upgrading. Raising a support case and quoting yours! Cheers for sharing!