AD Connector-Unable to connect to the On-Premises Active Directory
I am trying to create a AD Connector to connect to On-prem Active Directory. I am seeing the below error
Configuration issues detected: SRV record for LDAP does not exist for IP: 10.0.0.10, SRV record for Kerberos does not exist for IP: 10.0.0.10. Please verify existing configuration and retry the operation.
- 최신
- 최다 투표
- 가장 많은 댓글
AD Connector uses Kerberos for authentication and authorization of AWS applications. LDAP is only used for user and group object lookups (read operations). With the LDAP transactions, nothing is mutable and credentials are not passed in clear text. Authentication is handled by an AWS internal service, which uses Kerberos tickets to perform LDAP operations as a user.
AD Connector needs to obtain the _ldap._tcp.<DnsDomainName> and _kerberos._tcp.<DnsDomainName> SRV records when connecting to your directory. You will get this error [2] if the service cannot obtain these records from the DNS servers that you specified when connecting to your directory. For more information about these SRV records, see SRV record requirements -- [1]
Error Link-
https://docs.aws.amazon.com/directoryservice/latest/admin-guide/prereq_connector.html#srv_records -- [1] https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ad_connector_troubleshooting.html -- [2]
관련 콘텐츠
AWS 공식업데이트됨 2년 전
