Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Kerio loses LDAP-Connection (After a few hours a newly installed OS X Server with Kerio loses ldap-information)
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
OS X Server 10.8.2, newly installed with OpenDirectory running (On OS X Side it runs without any problems) and Kerio 8.0.0 build 639 loses every time the ldap-connection.
I run other Kerio 7.4.3 with System 10.6.8, any problems.

Is there any solution?

Thanks
Peter, Berne, Switzerland
  •  
freakinvibe

Messages: 1540
Karma: 62
Send a private message to this user
Hi Peter

It looks like you are not the only one, see

http://forums.kerio.com/m/97090/

and

http://forums.kerio.com/m/96716/

I haven't found a solution, though. What does the debug log with ldap enabled say?

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
Hello!
Unfortunately there is no entry in the debug log. The first message from Warning log is:


[01/Jan/2013 18:42:42] Can't bind to LDAP server srv01.xxx.intern. simple bind failed. User name: uid=yyy,cn=users,dc=srv01,dc=xxx,dc=intern. Err. code: -1, message: Can't contact LDAP server, LDAP srv. message: SASL(-13): authentication failure: realm changed: authentication aborted. ThreadId: 2981007360

Then it was trying for about 10 times with the same message and finally it says:


[01/Jan/2013 18:42:43] Failed to list users, LDAP server isn't available.

Then I restarted the whole server at 02/Jan. Since there it works...

Greetings
Peter
  •  
freakinvibe

Messages: 1540
Karma: 62
Send a private message to this user
To enable LDAP messages in the debug log, right-click and choose "Messages...", then tick "LDAP Server" and click OK. You should now see LDAP debug messages.

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
you mean from kerio or os x server?
  •  
freakinvibe

Messages: 1540
Karma: 62
Send a private message to this user
The Kerio Connect debug log.

Dexion AG - The Blackberry Specialists in Switzerland
https://dexionag.ch
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
Ok, thanks...
But, I don't know where to right-click...
In Protokolle (Messages), Debug (there is nothing to right-click) or in
Konfiguration (Configuration) Dienste (Services) LDAP but, there is no debug-log to activate.

I don't understand, sorry.
peter
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
Ok, I found it!
Activated it - I will report.
Since I made a restart of OS X Server and later I made a restart of Kerio (without restarting OS X Server) it works...
Strange.
  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
ldap didnt make any debug-log entry.
this night it has lost its connection again.
stop kerio, start again and it works.
is there any solution?
Peter
  •  
Lyle M

Messages: 410

Karma: 7
Send a private message to this user
I've posted a reply to another thread that may be applicable to your situation.

http://forums.kerio.com/mv/msg/23450/97446/#msg_97446

Regards,
Lyle Millander
  •  
phcranston

Messages: 35

Karma: 3
Send a private message to this user
I'm seeing the exact same problem here. We installed this server several weeks ago and its been running fine up until yesterday. This problem has now happened three times since then. Once I stop and start the Kerio services on the server it starts to work again but then after a while it just stops.
  •  
nitrokev

Messages: 48
Karma: 1
Send a private message to this user
same problem here too
  •  
Vladimír Mlčoch (Kerio)

Messages: 35
Karma: 1
Send a private message to this user
Hello,

enabling LDAP server messages in Debug log doesnt help, as this logs operations of Kerio Connect internal LDAP server (used for internal purposes only and is no way related to LDAP server in AD/OD).

You need to enable User Authentication, as these error messages are related to SASL authentication in Kerberos.

My guess is that Kerberos authentication works correctly, but has to create multiple requests to be successful, while failed requests (connections) remain active. After a given time (depending on # of requests) the amount of available connections is exhausted and authentication fails. Stopping/starting Connect helps, as this resets connections.

[Updated on: Mon, 07 January 2013 14:37]

  •  
Peter.Peter

Messages: 22
Karma: 0
Send a private message to this user
Again: LDAP lost communication with kerio. for a few days, it was ok. I have done what was described in KB < http://kb.kerio.com/product/kerio-connect/os-x/kerberos-auth entication-with-osx-107-against-an-opendirectory-server-911. html>

Now again I had to restart kerio.

What is wrong?

Thanks!
Peter
Vladimír Mlčoch (Kerio)

Messages: 35
Karma: 1
Send a private message to this user
Our developers are investigating the cause of this behavior.
I suggest you to create a Support ticket instead of using forum in this case, as i suppose this will not be counted towards your number of free incidents.
Previous Topic: SSL Import
Next Topic: Calendar sharing with Outlook user outside of domain via Internet subscription
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Tue Oct 17 22:17:18 CEST 2017

Total time taken to generate the page: 0.00581 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.