7 Replies Latest reply: Oct 15, 2013 12:13 AM by bhadra12 RSS

    ERROR<53761> Connection  Bind through PTA failed (91). Retrying...

    804908
      We are using Enterprise Directory Server 7.0 (zip version) on two Linux machines A & B. Independently directory servers are working fine on both machines A & B. DSCC is running on Machine A (deployed in Sun app server 9.1)which is managing the directory server (DS1) on same machine A.

      We want to manage DS2 running on machine B using DSCC running on machine A. We can create a instance on DS2 (machine2) using DSCC running on machine A but see the operation error in DSCC console as "Unexpected Error".

      I checked the DS2 error logs, it says..

      [12/Oct/2010:10:23:13 -0700] - ERROR<53761> - Plugins - conn=-1 op=-1 msgId=-1 - Connection Bind through PTA failed (91). Retrying...
      [12/Oct/2010:10:23:13 -0700] - ERROR<53761> - Plugins - conn=-1 op=-1 msgId=-1 - Connection Bind through PTA failed (91).

      I tried to enable the access via DSCC to DS1, it enables the access as "message comes successfully enabled" but i still do see the operation error in DSCC console as "Unexpected Error" for DS2.

      This is my current pass through plugin entry in DS2

      dn: cn=Pass Through Authentication,cn=plugins,cn=config
      objectClass: top
      objectClass: nsSlapdPlugin
      objectClass: ds-signedPlugin
      objectClass: extensibleObject
      cn: Pass Through Authentication
      nsslapd-pluginPath: /opt/ldapapp/ds7/dsee7/lib/passthru-plugin.so
      nsslapd-pluginInitfunc: passthruauth_init
      nsslapd-pluginType: preoperation
      nsslapd-pluginarg0: ldap://DS1.csueastbay.edu:3998/cn=dscc
      nsslapd-pluginEnabled: on
      modifiersName: cn=dirmgr
      modifyTimestamp: 20101007221727Z
      nsslapd-pluginId: passthruauth
      nsslapd-pluginVersion: 7.0
      nsslapd-pluginVendor: Sun Microsystems, Inc.
      nsslapd-pluginDescription: pass through authentication plugin

      if I set the nsslapd-pluginarg0 parameter as ldap://*DS2*.csueastbay.edu:3998/cn=dscc (Note DS2 instead of DS1) then I get the operational status in DSCC for DS2 host as Inaccessible (*to enable access click on the server and then on "Enable Access")* .

      Now I enable the access using DSCC on host A and message comes access is enabled successfully for DS2 and but I again see the operational Status as "Unexpected Error" for DS2 host.

      Could you please shadow some light what could be wrong?

      Appreciated your quick response.

      Thanks
        • 1. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
          handat
          The DSCC has to be on the same server as the ADS. By default your install of DSEE will install both your directory instances and the config instance (ADS). When you configure DSCC, its war file is generated to point at the local ADS.
          • 2. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
            799264
            In your DS2's dse.ldif edit DS1.csueastbay.edu part in " nsslapd-pluginarg0: ldap://DS1.csueastbay.edu:3998/cn=dscc " i.e, hostname and use the IP address instead. Restart the server and see if it works
            • 3. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
              804908
              I tried by replacing the hostname to ip in PTA plugin but did not help. Still same problem. Thanks though for your response. Regards.

              Fyi - If I enable the access to ds2 from ds1 using DSCC, the internal code automatically update the nsslapd-pluginarg0 parameter in dse.ldif file of ds2. It updates with the value of ds1 hostname. Error is still same.

              Also if stat the server ds2 from ds1 using DSCC, under Run modes & Status, the operational status shows as *"Warning: [LDAP: error code 1 - Can't connect to the LDAP server]*
              • 4. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
                Adi Narayana
                Please check your /etc/hosts file entries in your DSCC server. It should have entries for Host A as well as Host B
                Please make sure hosts file entries are in place in both the servers.

                Regards,

                Adi.
                • 5. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
                  804908
                  Thanks for the reply. I do see the host names in /etc/hosts file on both the machines ( DSCC as well actual directory server) but no positive response yet. I think the error is lying here. Ran dsccmon on the server where Directory server 7.0 is running.

                  [diruser@ds1 ~]$ dsccmon view-servers -E
                  Server Status Version Entry# Suffix# Roles
                  ----------------------- ------ ------- ------ ------- -----
                  ds1.csueastbay.edu:1389 ERROR - 0 0 ---
                  ds1.csueastbay.edu:1389 {
                  ERROR_UNEXPECTED_FAILURE[javax.naming.NamingException: [LDAP: error code 1 - Can't connect to the LDAP server]]
                  at com.sun.directory.dcc.core.ServerCacheEntryImpl.reportException(ServerCacheEntryImpl.java:195)
                  at com.sun.directory.dcc.core.ServerLoader.run(TopologyLoader.java:334)
                  Caused by: javax.naming.NamingException: [LDAP: error code 1 - Can't connect to the LDAP server]
                  at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3081)
                  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2987)
                  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2789)
                  at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2703)
                  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2602)
                  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2576)
                  at com.sun.jndi.ldap.LdapCtx.reconnect(LdapCtx.java:2572)
                  at javax.naming.ldap.InitialLdapContext.reconnect(InitialLdapContext.java:173)
                  at com.sun.directory.common.ssl.LdapContextUtils$3.run(LdapContextUtils.java:251)
                  at java.lang.Thread.run(Thread.java:619)
                  Embedded exception:
                  javax.naming.NamingException: [LDAP: error code 1 - Can't connect to the LDAP server]
                  at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3081)
                  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2987)
                  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2789)
                  at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2703)
                  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2602)
                  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2576)
                  at com.sun.jndi.ldap.LdapCtx.reconnect(LdapCtx.java:2572)
                  at javax.naming.ldap.InitialLdapContext.reconnect(InitialLdapContext.java:173)
                  at com.sun.directory.common.ssl.LdapContextUtils$3.run(LdapContextUtils.java:251)
                  at java.lang.Thread.run(Thread.java:619)
                  }
                  1 server error(s) displayed
                  • 6. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
                    user1175091
                    could you update, if this error has been resolved? we stuck in similar issue on DSEE 6.3

                    thanks,
                    • 7. Re: ERROR<53761> Connection  Bind through PTA failed (91). Retrying...
                      bhadra12

                      Hi,

                       

                      Did you try by unregistering and registering directory server with DSCC.

                       

                      Thanks.