如果SSL证书不包含公用名或使用者备用名称、则Unified Manager Active Directory身份验证将失败
适用场景
- OnCommand统一管理器9.5
- OnCommand统一管理器9.4
问题描述
将OnCommand UM OVA安装升级到9.5或升级在Windows或RedHat上运行的Java后、UM中的Active Directory (AD)身份验证将停止工作。在 "Setup / Authentication (设置/身份验证)"页面上测试AD身份验证时、出现以下错误:
Unable to communicate with the authentication server due to the following reasons: No subject alternative names present. Verify your authentication server configuration.
ocum-error.log存在类似于以下内容的错误:
2019-03-12 13:07:27,935 ERROR [umadmin] [default task-3] [service.logging.SimpleRemoteLoggingService|logOnServer] [c.n.d.w.c.s.l.LdapServersPagePresenter] Unable to communicate with the authentication server due to the following reasons: No subject alternative names present. Verify your authentication server configuration.