AD connection issue

Yes, Correct i have tried with this DOMAIN\username ? format only

Hi @GutteStolt,

I suggest to you to reinstall the IQService following this guide:

https://community.sailpoint.com/t5/Other-Documents/IQService/ta-p/158011

Use the same service user in all configuration:

  • AD Connector
  • Windows
  • IQservice installation

Hi Subham,

By these screenshots I am suspecting that you not installed IQService properly. So I would recommend please uninstall whatever you have now and install again. And use it in configuration. Let me know if you need help on that! Make sure the IQService file should take appropriate version you have. And run commands as administrator.

3 Likes

did you registered that user in IQServices

if not do

IQServices.exe -a "Domain\username"

1 Like

Hi @GutteStolt ,

I would suggest uninstalling the one which is not used, try with local host in the AD configuration for IQ service, follow the user register process as mentioned others.

try both with the TLS and without TLS configuration.

thanks,

@GutteStolt

I would recommend to uninstall the current IQ service. Make sure the installation is completely removed by verifying that the service is removed and registry entry is deleted as well.
Once this is done start with a fresh installation.
You can execute the below installation command which will install with most of the required settings in one go-
IQService.exe -i -b -o 5050 -p 5051 -n “InstanceName” -a “Domain\Username”

-p → Non-TLS port number
-o → TLS port number

Important IQ Service commands-

Command Description
IQService.exe -v Lists the details of the installed IQService
IQService.exe -u Unistalls iqservice and removes registry entries
IQService.exe -t Restarts service
IQService.exe -s Starts service
IQService.exe -k Stops service
IQService.exe -i -n “Demo” Installs iqservice with the instance name(IQService-Demo) mentioned in quotes
IQService.exe -I Installs iqservice
IQService.exe -a domainName\userName Registers a domain user for client authentication
1 Like

Hi All,

I have reinstalled the IQservice and registered the user for the TLS Do i need to provide the same port number on which IQservice is running?

I have tried with that getting below error.

One quick question if we don’t have IQservice user what impact will happen?

Thanks

Instance2 is using that port, and you can use any other ports if needed.
you can check the instance in service.
And the IQService user is required for authentication and authorization.

1 Like

Hi All,

As the IQServies is reinstalled and running on port No 5051 when i trying to test the AD connection getting the below error.

For this do i need to perform the additional steps? Like
configuring of IQService Client Authentication? Or is it fine just we need to make sure the the IQService is installed and running properly.

[ TimeoutException ] [ Possible suggestions ] a) Ensure that IQService Port is not blocked. b) Ensure that the IP/domain is reachable from IdentityIQ Server [ Error details ] Connection timed out: connect.

Additionally we don’t have IQService user is configured.

Thanks,
Shubham Gutte

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.