Symantec IGA

Hi Team,
Identity Suite 14.3 vapp with CP1, i have 1 AD domain with 2 domain controller (Primary &Secondary).
When i click on Test Connection, it always failed with error "Invalid Credential", but in my AD endpoint am using correct credential.

With this error, does this mean that the using SASL option, AD Endpoint connector does not support Failover to backup domain controller ?

regards,
William

I see case 20113174 is opened with support on this topic.  I will contact Naga to see if we can get clarification.  Thank you.​

------------------------------
Best regards,

Scott Owens
Sr Support Engineer

------------------------------
And, as always Perhaps there are others in the communities who have experience in doing this and we invite them to comment here also.

Another option may be to reach out to our partner HCL Technologies to see in what way they can assist further. The Enterprise Studio team of HCL can be reached at enterprisestudio@hcl.com. https://www.hcltech.com/enterprise-studio
------------------------------
------------------------------

Original Message:
Sent: 01-10-2020 01:09 AM
From: William Cheang
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

Hi Team,
Identity Suite 14.3 vapp with CP1, i have 1 AD domain with 2 domain controller (Primary &Secondary).
When i click on Test Connection, it always failed with error "Invalid Credential", but in my AD endpoint am using correct credential.

With this error, does this mean that the using SASL option, AD Endpoint connector does not support Failover to backup domain controller ?

regards,
William

Hi Scott, 
I have tested using "SSL" option, it works when perform Test Connection to Secondary AD servers. 
But somehow, it does not work for "SASL" option, furthermore, "SASL" is highlighted as the recommended option.

In the release note or limitation section, it is not highlighted that SASL option does not work with Failover secondary AD servers. 
So my assumption is that, it will works.

regards,
William
Original Message:
Sent: 01-10-2020 10:51 AM
From: SCOTT Owens
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

I see case 20113174 is opened with support on this topic.  I will contact Naga to see if we can get clarification.  Thank you.​

------------------------------
Best regards,

Scott Owens
Sr Support Engineer

------------------------------
And, as always Perhaps there are others in the communities who have experience in doing this and we invite them to comment here also.

Another option may be to reach out to our partner HCL Technologies to see in what way they can assist further. The Enterprise Studio team of HCL can be reached at enterprisestudio@hcl.com. https://www.hcltech.com/enterprise-studio
------------------------------

Original Message:
Sent: 01-10-2020 01:09 AM
From: William Cheang
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

Hi Team,
Identity Suite 14.3 vapp with CP1, i have 1 AD domain with 2 domain controller (Primary &Secondary).
When i click on Test Connection, it always failed with error "Invalid Credential", but in my AD endpoint am using correct credential.

With this error, does this mean that the using SASL option, AD Endpoint connector does not support Failover to backup domain controller ?

regards,
William

William,

The failover is expected to work with SASL option as well. There is no restriction as such with SASL.

Thanks,
Ishwar
Original Message:
Sent: 01-12-2020 08:48 PM
From: William Cheang
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

Hi Scott,
I have tested using "SSL" option, it works when perform Test Connection to Secondary AD servers.
But somehow, it does not work for "SASL" option, furthermore, "SASL" is highlighted as the recommended option.

In the release note or limitation section, it is not highlighted that SASL option does not work with Failover secondary AD servers.
So my assumption is that, it will works.

regards,
William
Original Message:
Sent: 01-10-2020 10:51 AM
From: SCOTT Owens
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

I see case 20113174 is opened with support on this topic.  I will contact Naga to see if we can get clarification.  Thank you.​

------------------------------
Best regards,

Scott Owens
Sr Support Engineer

------------------------------
And, as always Perhaps there are others in the communities who have experience in doing this and we invite them to comment here also.

Another option may be to reach out to our partner HCL Technologies to see in what way they can assist further. The Enterprise Studio team of HCL can be reached at enterprisestudio@hcl.com. https://www.hcltech.com/enterprise-studio

Original Message:
Sent: 01-10-2020 01:09 AM
From: William Cheang
Subject: Does AD endpoint SASL option support Failover to backup domain controller ?

Hi Team,
Identity Suite 14.3 vapp with CP1, i have 1 AD domain with 2 domain controller (Primary &Secondary).
When i click on Test Connection, it always failed with error "Invalid Credential", but in my AD endpoint am using correct credential.

With this error, does this mean that the using SASL option, AD Endpoint connector does not support Failover to backup domain controller ?

regards,
William