NSL 6.0 installed in LDAP/ SecretStore mode
NSL 6.0 installed in LDAP Credential Manager mode (see tid 3009412 for a description of the NSL LDAP installation modes)
NTAssociation set to "on" (i.e. option chosen during installation to associate the Windows user name with the NSL/ LDAP username)
CAUSE:- Set dstrace to capture LDAP
SecretStore was not installed on the failing servers
Install SecretStore on all servers that will be used for LDAP authentication. With NSL installed in LDAP/ SecretStore mode, SecretStore must be available on all servers that will be used for LDAP authentication.
On failing server:
- Load iMonitor, locate LDAP server object and unload/ reload to refresh
- Look in dstrace file for extension 2.16.840.1.1137184.108.40.206.1 in extension list.
- Extension 2.16.840.1.1137220.127.116.11.1 did not show in extension list.
- LSSS is the ldap secret store service, and was not present on the failing server.