Avamar:安全 LDAP 測試失敗,並顯示錯誤:「message javax.naming.ServiceUnavailableException:」
Summary: Avamar:安全 LDAP 測試失敗,並顯示錯誤:「message javax.naming.ServiceUnavailableException:」
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
使用者使用 KB 文章 529493 設定的安全 LDAP:如何在 Avamar Server
上設定安全的 LDAP案例 1:
LDAP 測試失敗,並顯示錯誤:
訊息 javax.naming.ServiceUnavailableException: dc-01.emc.com:636;插座關閉;剩餘名稱「DC=EMC,DC=com」
案例 2:
Error message:
2020-03-17 11:14:46,222 錯誤 [主要] 助手。LDAPUpnGrpQueryActionUserAuth:搜尋目錄時出現問題:javax.naming.CommunicationException: dc-01.emc.com:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException:PKIX 路徑組建失敗: sun.security.provider.certpath.SunCertPathBuilderException: 找不到連接至要求目標的有效憑證路徑]
Cause
- 環境中有多個 DC,例如 dc-01、dc-02 等。
- LDAP 設定為使用一個 DC,且該 DC 的憑證會匯入rmi_ssl_keystore。
Resolution
步驟:
- 請依照下列 KB 文章 529493 設定安全的 LDAP:如何在 Avamar Server 上設定安全的 LDAP
- 確認是否有多個 DC,然後取得 DC 名稱和 IP
- 檢查使用「nslookup domain name」的 DC。
例如:
nslookup dell.com
- 取得 DC 清單的憑證,並將 LDAP 伺服器憑證匯入rmi_ssl_keystore
- 若要匯入憑證,請按照下列步驟操作:
- 登入 PuTTY 並切換至根使用者
- 備份rmi_ssl_keystore:
CP -p /usr/local/avamar/lib/rmi_ssl_keystore /usr/local/avamar/lib/rmi_ssl_keystore-orig
- 假設環境中有兩個或多個 DC (dc-01 和 DC-02),請將 dc-01.crt 和 dc-02.crt 憑證置於 /tmp 下
Keytool -importcert -file /tmp/dc-01.crt -keystore /usr/local/avamar/lib/rmi_ssl_keystore -storepass changeme -alias dc-01
keytool -importcert -file /tmp/dc-02.crt -keystore /usr/local/avamar/lib/rmi_ssl_keystore -storepass changeme -alias dc-02
keytool -importcert -file /tmp/dc-02.crt -keystore /usr/local/avamar/lib/rmi_ssl_keystore -storepass changeme -alias dc-02
- 以系統管理員使用者身分重新啟動 MCS:
mcserver.sh --stop
mcserver.sh --start
Additional Information
本內容已翻譯為 17 種語言:
| https://downloads.dell.com/TranslatedPDF/CS_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/DA_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/DE_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/ES-XL_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/FI_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/FR_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/IT_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/JA_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/KO_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/NL_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/NO-NO_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/PL_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/PT-BR_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/RU_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/SV_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/TR_KB541441.pdf |
| https://downloads.dell.com/TranslatedPDF/ZH-CN_KB541441.pdf |
Affected Products
AvamarProducts
AvamarArticle Properties
Article Number: 000170123
Article Type: Solution
Last Modified: 10 Oct 2024
Version: 4
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.