Unable to connect to LDAP with search guard

Hi,

I tried to integrate searchguard with LDAP .I got following error and warnigs.What does it means and how to resolve it.

[2017-06-28T07:15:50,369][ERROR][c.f.s.a.BackendRegistry ] Unexpected exception com.google.common.util.concurrent.UncheckedExecutionException: ElasticsearchSecurityException[XXX not found]

[2017-06-28T07:15:50,369][INFO ][c.f.s.a.BackendRegistry ] Cannot authenticate user (or add roles) with ad 4 due to ElasticsearchSecurityException[com.google.common.util.concurrent.UncheckedExecutionException: ElasticsearchSecurityException[XXX not found]]; nested: UncheckedExecutionException[ElasticsearchSecurityException[XXX not found]]; nested: ElasticsearchSecurityException[XXX not found];, try next

[2017-06-28T07:15:50,374][WARN ][c.f.d.a.l.b.LDAPAuthorizationBackend] Unable to connect to ldapserver hostname:389 due to [org.ldaptive.provider.ConnectionException@602013923::resultCode=PROTOCOL_ERROR, matchedDn=null, responseControls=null, referralURLs=null, messageId=-1, message=javax.naming.CommunicationException: XXXX:389 [Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake], providerException=javax.naming.CommunicationException: XXX:389 [Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake]]. Try next.

seems you try to connect to your ldap with ssl although on the plain port 389.
Switch to port 636 or disable ssl.

It always helpful to provide your configration (sg_config.yml) when reporting problems.

ยทยทยท

Am 28.06.2017 um 18:27 schrieb Swamy Karampuri <swamykarampuri610@gmail.com>:

Hi,

I tried to integrate searchguard with LDAP .I got following error and warnigs.What does it means and how to resolve it.

[2017-06-28T07:15:50,369][ERROR][c.f.s.a.BackendRegistry ] Unexpected exception com.google.common.util.concurrent.UncheckedExecutionException: ElasticsearchSecurityException[XXX not found]

[2017-06-28T07:15:50,369][INFO ][c.f.s.a.BackendRegistry ] Cannot authenticate user (or add roles) with ad 4 due to ElasticsearchSecurityException[com.google.common.util.concurrent.UncheckedExecutionException: ElasticsearchSecurityException[XXX not found]]; nested: UncheckedExecutionException[ElasticsearchSecurityException[XXX not found]]; nested: ElasticsearchSecurityException[XXX not found];, try next

[2017-06-28T07:15:50,374][WARN ][c.f.d.a.l.b.LDAPAuthorizationBackend] Unable to connect to ldapserver hostname:389 due to [org.ldaptive.provider.ConnectionException@602013923::resultCode=PROTOCOL_ERROR, matchedDn=null, responseControls=null, referralURLs=null, messageId=-1, message=javax.naming.CommunicationException: XXXX:389 [Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake], providerException=javax.naming.CommunicationException: XXX:389 [Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake]]. Try next.

--
You received this message because you are subscribed to the Google Groups "Search Guard" group.
To unsubscribe from this group and stop receiving emails from it, send an email to search-guard+unsubscribe@googlegroups.com.
To post to this group, send email to search-guard@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/search-guard/fd224119-eb2d-4f86-a6a3-92276e2c52cf%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.