ICAP/1.0 500 Server error: LDAP server configuration missing
Last Modified: 2023-04-13 20:16:41 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
ICAP/1.0 500 Server error: LDAP server configuration missing
Technical Articles ID:
KB88704
Last Modified: 2023-04-13 20:16:41 Etc/GMT EnvironmentFor supported environments, see KB87112 - Supported platforms for Data Loss Prevention Prevent and Monitor. Problem
DLP Prevent sends the following ICAP response, which you see in third-party web proxy server logs:
You can also see the ICAP response in a Wireshark or Cause
DLP Prevent performs a check when web proxy servers initialize communication with DLP Prevent. In this way, it determines whether LDAP information is available from ePolicy Orchestrator (ePO).
Solution
Make sure that the LDAP servers are configured in ePO. To verify the servers that are currently configured, perform the following steps:
NOTE: The following steps assume that you are configuring an Active Directory server. OpenLDAP-specific information is included where needed.
NOTE: Using domain names gives failover support and allows only servers from a specific site to be chosen. OpenLDAP servers can only use server names and can't be specified by domain.
IMPORTANT: Chasing referrals can cause performance problems if it leads to non-local network traffic. It does not matter whether you use the Global Catalog.
NOTE: These credentials must be for an administrator account on the server. Use the domain\username format on Active Directory servers and cn=User,dc=realm,dc=com format on OpenLDAP servers.
Affected ProductsLanguages:This article is available in the following languages: |
|