Can't Authenticate Into the Web Admin Interface for Calendar Publishing

  • 7014232
  • 05-Dec-2013
  • 05-Dec-2013

Environment

Novell GroupWise 2012
Novell GroupWise 8

Situation

Unable to log into CalHost Admin web interface.
Every time one tries to authenticate, it reports that the Login Failed
When attempting authentication using the ldapsearch command, the following error messages may be present (see Additional Information section for details on how to use the command):
  • ldap_bind: Confidentiality required (13)
  • ldap_sasl_interactive_bind_s: Confidentiality required (13)
  • ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)

Resolution

One solution is to follow the steps provided in TID 7013279 - How to configure LDAP to allow simple binds.
Note: This is generally an accepted solution, as most often, the CalHost server authenticates to an LDAP server located on the same server (itself).

Another solution is to configure the Calendar Publishing Host to authenticate securely over port 636:
  1. Change the LDAP Authority Network Address to use port 636 instead of 389. Select from the following options:
  2. After you edit the calhost.cfg file, you must restart Apache and Tomcat in order to put the changes into effect.
    See Section 64.2.6, Restarting the Web Server.
  3. Attempt to Login to the Administration Web Console
  4. (Not always required) If unable to authenticate, proceed with the steps below to configure the SSL Trusted Root Certificate:


Cause

The LDAP server is denying authentication attempts over simple binds, port 389.

Additional Information

Use the following command to test the LDAP server's response with a simple bind over port 389:
ldapsearch -x -h <ldapServerAddress> -D <adminFDN> -W
(ie. ldapsearch -x -h 151.155.215.91 -D cn=admin,o=novell -W)