Install the Okta LDAP Agent from a command line. To disable support for SSL certificate pinning, perform the procedure below appropriate for your operating system: Windows To allow installation to complete in this case, Okta recommends that you bypass SSL proxy processing by adding the domain to a allowlist.Īlternatively, you can choose to disable SSL pinning as described below, but be aware that doing so disables a security enhancement provided by the agent. This is most likely to occur in environments that rely on SSL proxies. If the log contains the above entry, then you are probably attempting to install Java LDAP agent version 5.3.1 or later and your environment is one in which the agent's support for SSL certificate pinning prevents communication with the Okta server. Error code 12.Ĭheck the log and look for this entry: : : No valid public key found in certificate chain. Error when installing the agentĭuring agent installation, after clicking Allow Access, the following error message displays:įailed to parse response from Okta and Unable to register the agent. Settings that you override are not changed. You can use Apache Directory Studio to examine attributes for existing users and groups to verify the template values, or you can select the appropriate setting.Ĭhanging templates modifies all template default values. Each LDAP environment is unique and might require you to override the default values with your environment-specific settings. Note that the schema templates are suggestions based on common values. To troubleshoot LDAP issues, obtain an LDAP browser such as Apache Directory Studio.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |