Testing the Connection

About this task

When the common.properties & ldap.properties files are updated, reset the Remote Control application by selecting Admin > Reset Application.

When the service restarts, log on to the Remote Control server by using an Active Directory user ID and password. If the entries in the LDAP properties file are correct, you are authenticated and logged on successfully.

BigFix® Remote Control Server connects directly to LDAP. Therefore, any password changes within LDAP are immediately effective only if the LDAP password change synchronizes to the LDAP server that is set within the ldap.properties file.

Note: The default ADMIN user ID within the BigFix® Remote Control Server application always authenticates against the BigFix® Remote Control Server regardless of whether LDAP authentication is enabled. If there is a connectivity problem between BigFix® Remote Control Server and LDAP, the ADMIN user can always log on.

If there are any errors in the ldap.properties file, you see a failed logon message. The Logon screen is displayed with an Invalid user name or wrong password message.

To determine the cause of the failure look in the trc.log file. View the application log by using the server UI.

  • In the BigFix® Remote Control Server UI, click Admin > View application log
  • Click CTRL+END to reach the end of the file.
The following common errors can be displayed. The errors indicate a problem with creating the initial connection between BigFix® Remote Control Server and Active Directory.
AcceptSecurityContext error, data 525
Returns when user name is invalid.
AcceptSecurityContext error, data 52e
Returns when user name is valid but password or credentials are invalid. Prevents most other errors from being displayed as noted.
AcceptSecurityContext error, data 530
Logon failure: account logon time restriction violation. Displays only when presented with valid user name and password credentials.
AcceptSecurityContext error, data 531
Log on failure: user is not allowed to log on to this computer. Displays only when presented with valid user name and password credentials.
AcceptSecurityContext error, data 532
Logon failure: the specified account password is expired. Displays only when presented with valid user name and password credentials.
AcceptSecurityContext error, data 533
Logon failure: account currently disabled. Displays only when presented with valid user name and password credential.
AcceptSecurityContext error, data 701
The user's account is expired. Displays only when presented with valid user name and password credential.
AcceptSecurityContext error, data 773
The user's password must be changed before they log on for the first time. Displays only when presented with valid user name and password credential.
AcceptSecurityContext error, data 775
The referenced account is locked out and cannot be logged on to. Displays even if invalid password is presented.
LDAP Authentication.exceptionmyserver.mydomain.com:389
Displays when the server name specified by ldap.connectionURL is unreachable.