This article is useful for administrators who use eDirectory as their LDAP Server. Those who are new to LDAP would have been facing this error frequently, when they go via the clear text port:
ldap_bind: Confidentiality required (13)
as shown below.
The reason for this is that the configuration parameter related to the ‘Require TLS for operations’ in the ldap server object is set.
This parameter can be modified either through the ldapconfig utility (that gets bundled with eDirectory) or through iManager.
Here it can be seen that the parameters ‘ldapTLSRequired’ (for all the ldap operations) and ‘Require TLS for Simple Binds with Password’ (for ldap simple binds alone) are set to yes. These are the default values and are the recommended values from the security purpose.
For testing purposes, if the ldap operations need to proceed over the clear text channel, then these options need to be unset as follows.
Note that the parameters ‘ldapTLSRequired’ (for all the ldap operations) and ‘Require TLS for Simple Binds with Password’ (for ldap simple binds alone) are set to ‘NO’ now.
The same thing can be configured through iManager as well as follows:
Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment. It just worked for at least one person, and perhaps it will be useful for you too. Be sure to test in a non-production environment.