Home
  •  

ADC cannot replicate to Exchange 5.5. The LDAP signing is misconfigured.

ADC_cannot_replicate_to_Exchange_5_5__The_LDAP_signing_is_misconfigured__3_Rule (Rule)

Knowledge Base article:

Summary

Active Directory Connector (ADC) cannot replicate to Exchange 5.5 because, on this server, the Lightweight Directory Access Protocol (LDAP) Client Integrity setting is set to 2 (always sign). Exchange 5.5 does not support LDAP signing.

Sample Event:

Event Type: Warning

Event Source: MSADC

Event ID: 8070

Description: The Connection Agreement "CN=RecipientCAName,CN=Active Directory Connections,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=child,DC=domain,DC=com" on directory adcserver.child.domain.com could not be loaded due to an error. Make sure that the Connection Agreement is configured properly.

Related Events:

Event Type: Error

Event Source: MSADC

Event ID: 8118

Description: Could not locate the export container cn=Configuration,ou=SITE,o=ORG. Make sure that the configured container exists, or that the account in the Connection

Agreement has permissions to access the container. Replication stopped for this Connection Agreement. (Connection Agreement "Config CA_DOMAIN #??)"

Event Type: Error

Event Source: MSADC

Event ID: 8142

Description:

The service threw an unexpected exception.

Resolutions

Exchange 5.5 does not support LDAP signing. To allow this server to connect to 5.5, set the registry key to 0 (never sign) or to 1.

External

For more information about Microsoft Active Directory Connector (MSADC) event 8341, see:

Element properties:

TargetMicrosoft.Exchange.ServerRole.2003
CategoryEventCollection
EnabledTrue
Event_ID8341
Event SourceMSADC
Alert GenerateTrue
Alert SeverityWarning
Alert PriorityNormal
RemotableTrue
Alert Message
ADC cannot replicate to Exchange 5.5. The LDAP signing is misconfigured.
{0}
Event LogApplication

Member Modules:

ID Module Type TypeId RunAs 
EventDS DataSource Microsoft.Windows.EventProvider Default
GenerateAlert WriteAction System.Health.GenerateAlert Default

Source Code:

<Rule ID="ADC_cannot_replicate_to_Exchange_5_5__The_LDAP_signing_is_misconfigured__3_Rule" Enabled="onEssentialMonitoring" Target="Exch2003Core!Microsoft.Exchange.ServerRole.2003" ConfirmDelivery="false" Remotable="true" Priority="Normal" DiscardLevel="100">

  <Category>EventCollection</Category>

  <DataSources>

    <DataSource ID="EventDS" TypeID="Windows!Microsoft.Windows.EventProvider">

      <ComputerName>.</ComputerName>

      <LogName>Application</LogName>

      <Expression>

        <And>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery>EventDisplayNumber</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value>8341</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery>PublisherName</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value>MSADC</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

        </And>

      </Expression>

    </DataSource>

  </DataSources>

  <WriteActions>

    <WriteAction ID="GenerateAlert" TypeID="SystemHealth!System.Health.GenerateAlert">

      <Priority>1</Priority>

      <Severity>1</Severity>

      <AlertOwner>$Data/PublisherName$</AlertOwner>

      <AlertMessageId>$MPElement[Name="ADC_cannot_replicate_to_Exchange_5_5__The_LDAP_signing_is_misconfigured__3_Rule.AlertMessage"]$</AlertMessageId>

      <AlertParameters>

        <AlertParameter1>$Data/EventDescription$</AlertParameter1>

      </AlertParameters>

      <Suppression>

        <SuppressionValue/>

      </Suppression>

    </WriteAction>

  </WriteActions>

</Rule>