Knowledge Base Library
KB_180037: Unable to save the Message Delivery Component (MDC) profile in Linux mdcconfiggui – Certificate file not found
When configuring an MDC profile on Linux, you can get an error “Certificate file could not be found”. Keywords: MDC, mdcconfiggui, Linux
When configuring IDENTIKEY Authentication Server with Thales nShield HSM, the IDENTIKEY configuration wizard fails with the error “Error from command [GetKeyInfoEx] : [CrossModule]”
KB_170044: How To release attributes from Active Directory when authenticating with IDENTIKEY Federation Server (IFS) and IDENTIKEY Authentication Server (IAS)
A customer would like for example the email attribute released from Active Directory after a successful authentication from IFS to IAS. In this article we will describe how to configure this, based on the example of the IFS built-in userpage with Radius authentication to IAS.
KB_160115: How To Show the Expiration Dates of IDENTIKEY Authentication Server (IAS) User Accounts when IAS is using an ODBC data store
User accounts in IDENTIKEY Authentication Server (IAS) can be set to expire on a specific date by setting the “Expires” feature on the user account. This field is typically used for temporary users such as contractors or external auditors. IAS does not automatically delete "expired" users.
KB_160114: Error in IDENTIKEY Authentication Server (IAS) during authentication: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'
When an IAS administrator authenticates via an IAS policy which is set to reject local admins you will see this Error Message: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'
KB_160113: How To configure Active Directory SSL Back-End Authentication in IDENTIKEY Authentication Server (IAS) on Linux
When using Microsoft Active Directory with IAS for back-end authentication, the back-end server should be configured accordingly. As such, if Active Directory is configured to communicate via SSL, then IDENTIKEY Authentication Server must also be configured to use SSL with Active Directory.
KB_160112: Error Message in IDENTIKEY Authentication Server during authentication: 'The user domain does not match the accepted domain.'
When an authentication fails with error message “The user domain does not match the accepted domain”, this means that the accepted domain feature in IDENTIKEY Authentication Server (IAS) is configured for a domain that is different from the domain of the user who is authenticating.
KB_140178: LDAP Backend authentication in IDENTIKEY Authentication Server with multiple subdomains when using the Global Catalog
When you have multiple subdomains for backend authentication, you can use the global catalog option in IDENTIKEY Authentication Server(IAS) (When you have more than 2 subdomains, you must use the Global Catalog option. See KB article KB 140177 for details). Important to know is that the ldap bind user must be the same on the top level domain and all subdomains,...
When you are monitoring the IDENTIKEY Appliance with SNMP, the system description field isn’t updated after an upgrade from version 22.214.171.124 onwards. For example. When you do an upgrade from 126.96.36.199 to 188.8.131.52, the IDENTIKEY Appliance version that is acquired through SNMP remains 184.108.40.206
KB_140177: How to configure LDAP Backend authentication with multiple subdomains in IDENTIKEY Authentication Server.
When you have more than 2 sub domains in Active Directory(AD) but only define the top level domain (for backend authentication) in IDENTIKEY Authentication Server(IAS), you get the error message "user not found" for the authentication.