Converting from LDAP to LDAPS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-31-2015 08:22 AM
I've been reading through the Wiki and the Community, but I just cannot figure out why I'm unable to successfully move from LDAP to LDAPS.
Right now, we have a working [un-encrypted] LDAP connection (and we have a VPN tunnel setup, if that's relevant). I uploaded and validated a new certificate, but as soon as I check the SSL box, I get the following error:
"Server Operational Status is false
Verify server address and port are correct and accessible"
What am I not doing (or doing wrong)?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-08-2017 03:19 PM
Hi Michael. I'm having exactly the same errors, were you able to resolve this. I'm stucked and I don't know where else to check. I have a NATed IP adress that is routing to the LDAP Server 636 is opened and there the source ip addresses are whitelisted in the firewall. Still get time out for the connection.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎09-01-2015 01:27 AM
Hi Michael,
You mention that you are using a vpn and your network guys say port 636 is open.
If you change the port you are using from 389 to 636 which seems the case, the traffic towards your LDAP server may not go via the vpn - which possibly it no longer needs to, due the SSL being used.
However the source IP of the IP traffic from the instance will change if traffic does not use the vpn.
Finding the IP information for your instance
https://hi.service-now.com/kb_view.do?sysparm_article=KB0538621
Note:
Source address used for integrations into customer network with NO VPN
versus
Source address used for integrations into customer network with VPN
Consider getting back to your network guys and check out under what circumstances they allow incoming connections towards the LDAP server.
Best Regards
Tony
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎09-01-2015 10:13 AM
Hi Michael,
Actually reviewing my own update, I do suggest checking with your network guys that they are allowing connections to the LDAP server IP on port 636 for the range of Source IPs for your 2 X datacenters, but I expect that all traffic towards your LDAP server IP will go via the vpn.
Best Regards
Tony
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎07-17-2025 06:05 AM
Hi Michael,
I'm sure you sorted this out 10 years ago(!), but the error you posted has the IP address repeated., which might have been the cause. That suggests that the IP has been entered twice, or ServiceNow's app logic is entering it twice.
Cheers,
Jason
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-31-2015 12:01 PM
Hi Michael, would you mind sharing a screenshot with your LDAPS setup?
Thanks,
Berny
