AD Source and IQ Service Issues

Hi All,

I have two queries that I’ll explain one by one:

First Query:

I have created an AD source and installed the IQ service. However, I am unable to copy the Windows certificate to the VA.

• openssl s_client -connect server.example.com:636 is working for TLS port 5050, but not for port 636.

• It shows “TLS handshake done” but “no peer certificate available.”

• On my Windows machine, the IQService instance certificate is available in both the Personal and Trusted Authority folders.

I need to copy this certificate to my VA, but note that we do not have WinSCP available.

Second Query:

The AD test connection is not working even after disabling the TLS connection.

• Active Directory requires the IQ service only for provisioning. Even without the IQ service, the test connection should work.

• I checked the CCG logs, which return a 510 response.

Any insights on these queries would be greatly appreciated.

Regards,
Vasant

Please share configuration of application. If you are using valid port and host then the issue will not appear. I will suggest first configure without tls and port as 5050 for iqservice
Catalog server port as 3268
Auth type simple
Then check if everything is working and then change the port as per need so that you can narrow down the issue.

@Vasant Did you do the network connectivity check between VA and AD DC ?

Hi @mkumariaas & @kompala , Thanks for response

I have disabled the TLS configuration and tried to connect it without IQService where I’m not able to make port as null in UI Through API I made it null and ran Test Connection. It worked.

Coming to IQService where iam able to copy the certificate from local windows to VA and changed the file name to .PEM and ran the test connection. It worked.