Kvz100028 - Cannot connect to AD or user database or domain controller

Troubleshooting: Cannot connect to AD or user database or domain controller




Document ID: KVZ100028/ Created on: Feb 16, 2011/ Updated on: Feb16, 2011


Symptoms



Receiving and error message such as 'Could not connect to the user database….'



Cause


We have encountered this situation for the following reasons:

1. In release 4.0.x and prior, kMGR authenticates users over LDAP port 389. You might be seeing this issue if LDAP access over port 389 has been disabled and your domain controller is configured to use secure LDAP port.

2. If your domain controller is brand new.

3. If your DNS is down.




Resolution


1. Your domain controller should allow access over LDAP port 389.

2. If you are working with a brand new domain controller, create a new user account called 'aKaviza' (please note the 'a' in front of Kaviza). When you are setting up the user database connection, Kaviza queries AD using the first account fetched from AD to ensure that it has full access to it. Sometimes queries that results in the 'guest' user account as the first user account may result in this error.

3. Verify that your DNS server is operational.