【IAG Product Warning】Domain ADSSO features is unable to function suddenly
  

CTI SC Lv2Posted 24 Jun 2022 17:32

Product Warning:
Domain ADSSO features is unable to function suddenly due to the Microsoft push the hardened patch on the windows server from 14 June 2022.

Product:
IAM/IAG

Version:
IAM11.0 and above

Bug Phenomena:
Domain ADSSO features is unable to function suddenly due to the Microsoft push the hardened patch on the windows server from 14 June 2022.
9965562b584876fea9.png


[Trigger conditions]
IAM/IAG with Domain ADSSO enabled.


[Root cause]:
The AD domain has updated Microsoft's latest KB5005568 (the patch on win server 2019 is called this, and other system versions are not sure). After installed this Windowsm patch, the security level of the dcom connection will be required to reach the RPC_C_AUTHN_LEVEL_PKT_INTEGRITY level. If this level is not reached, a security warning will be prompted , and the security level of the wmic tool integrated on the IAM/IAG device is the default level when creating a new dcom connection, which causes a large number of alarm logs to be generated every time we call the wmic tool to fetch logs from the domain. For patch information, Please refer to https://support.microsoft.com/en ... 2-941e-37ed901c769c


[How to check ]:
Step 1: Confirm whether IAM/IAG is using Microsoft AD Domain SSO.
Step 2: Check the Domain SSO is able to read the recent users number and check the Last Obtained timeline.
6938962b5849d82d9f.png

[Current solution]:
Currently has a patch to solve this issue.
Please contact our TAC for the patch.

Precautions:
1. The patch doesn't require reboot device to take effect.
6979362b584840e6ba.png

Like this topic? Like it or reward the author.

Creating a topic earns you 5 coins. A featured or excellent topic earns you more coins. What is Coin?

Enter your mobile phone number and company name for better service. Go

tanveer Lv2Posted 24 Jun 2022 18:59
  
Thanks for the nice update
jetjetd Lv5Posted 26 Jun 2022 00:45
  
thank you this is very helpful.
RegiBoy Lv4Posted 20 Jul 2022 16:42
  
very beneficial troubleshooting.
Newbie308427 Lv4Posted 19 Oct 2022 23:52
  
nice sharing
Faisal P Lv8Posted 30 Oct 2022 22:41
  
Thank you very much for the information ...
Faisal P Lv8Posted 30 Oct 2022 22:41
  
Nice article ...
Faisal P Lv8Posted 30 Oct 2022 22:42
  
Great info ...
Faisal P Lv8Posted 30 Oct 2022 22:42
  
Very informative ...
Faisal P Lv8Posted 30 Oct 2022 22:42
  
Nice guidance ...

Trending Topics

Board Leaders