ActiveIQ Unified Managerでタイムアウトが発生してLDAPユーザの検索が失敗する
環境
問題
AIQ UMのリモート認証ページでユーザ検索をテストする際に、テスト認証が次のメッセージで失敗します。
ocumserver.log [ログの場所については、KB: Active IQ Unified Manager の重要なログファイルとそれぞれの場所を確認してください。]
2021-09-16 16:26:51,285 ERROR [umadmin] [default task-86671] [service.logging.SimpleRemoteLoggingService|logOnServer] [c.n.d.w.c.s.l.LdapServersPagePresenter] 504 Gateway Time-out <html><body><h1>504 Gateway Time-out</h1>
The server didn't respond in time.
</body></html>
com.google.gwt.core.shared.SerializableThrowable: 504 Gateway Time-out <html><body><h1>504 Gateway Time-out</h1>
The server didn't respond in time.
</body></html>
LDAPサーバのログには次の情報が表示されることがあります
Enter LDAP Password:
TLS: during handshake: peer cert is valid, or was ignored if verification disabled (-9841)
TLS: during handshake: Peer certificate is trusted
TLS: TLSv1.2 session established using 256-bit TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 cipher
TLS: hostname (server2.domain.com) does not match common name in certificate (server1.domain.com).
TLS reverse lookup of 'server2.domain.com' is 'server2.domain.com', checking if that matches the certificate common name
TLS: hostname (server2.domain.com) does not match common name in certificate (server1.domain.com).
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)