z/OS Cryptographic Services PKI Services Guide and Reference
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


IKYL002I

z/OS Cryptographic Services PKI Services Guide and Reference
SA23-2286-00

IKYL002I
LDAP bind to LDAP-server-domain-name:port failed, status = nnnn: status-code-description

Explanation

PKI Services is attempting to bind to one of the LDAP servers specified in the LDAP section of the pkiserv.conf file. The bind has failed. The failing server name is displayed. A description of the error is also displayed, if known. Note: If the error code is an LDAP return code, no error description will be displayed.

System action

PKI Services attempts to bind to your other LDAP servers, if any. If PKI Services is unable to bind to any LDAP servers, the LDAP posting of certificates and CRLs is temporarily suspended. PKI Services attempts to bind again during the next posting interval. All post requests will remain in the request database to be attempted later, subject to being deleted after one week of unsuccessful attempts.

System programmer response

Diagnose the problem indicated by the return code. For LDAP_SERVER_DOWN, ensure that your LDAP server is running. If so, you might have specified the server name incorrectly in the PKI Services configuration file. Locate the failing Server value in the pkiserv.conf file. Correct the value if it does not specify the correct LDAP server domain name and port, then stop and restart PKI Services. For all other LDAP errors, follow the instructions in z/OS IBM Tivoli Directory Server Client Programming for z/OS. Report errors to the IBM® support center. If message IKYC009I is also displayed, report that information as well. For more information, see Steps for tailoring the LDAP section of the configuration file.

Parent topic: Messages

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014