Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

PolicyServer AD fails to synchronize with the LDAP server in Endpoint Encryption 5.0

    • Updated:
    • 5 Sep 2017
    • Product/Version:
    • Endpoint Encryption 5.0
    • Platform:
    • Windows 2003 Standard 64-bit
Summary

The Policy Server Window Service stops during AD synchronization which may be caused when the ADSyncLock value is set to "true". As a result, the PolicyServer will always think that there is an AD synchronization process running.

Details
Public

Endpoint encryption 5.0 Patch 2 has a new feature that supports the simplified AD integration to avoid AD sync at same time on multiple TMEE Policy Server environment.

In the database table PolicyServerSettings, the new policy value is ADSyncLock.

AD Sync ValueScenario
TrueA Policy Server  is running an AD synchronization
FalseNo Policy Server is running an AD synchronization

The default value for ADSyncLock is set to “false”. However, during the AD synchronization, the value of the ADSyncLock will be set to “true”. After AD synchronization process done, the value will then be set back to “false”.

The Policy Server checks the ADSyncLock value before it starts the AD synchronization and skips the synchronization when the value is true. This function runs by the PolicyServer Windows Services.

For some unknown reason, the Policy Server Window Service stops during AD synchronization, this may be because the ADSyncLock value is set to "true" and it was never set back to "false". Therefore, the PolicyServer will always think that there is an AD synchronization process running.

To check the DB value:

Select * from dbo.PolicyServerSettings
where ParameterName='ADSyncLock'

Check the DB value

To resolve the issue, restart the Policy Server Windows services to reset the ADSyncLock Value.

Restart Policy Server Windows services

Premium
Internal
Rating:
Category:
Troubleshoot
Solution Id:
1109540
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.