No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.

Knowledge Base

Methods for handle failed certification of domain user at TSM client

Publication Date:  2012-09-13  |   Views:  531  |   Downloads:  0  |   Author:  x00226184  |   Document ID:  EKB1000014593


Issue Description

 TSM client certificates with domain account, failed, but regular account successes. The synchronization between TSM server and AD is normal.   

Alarm Information


Handling Process

Review the configuration of time between TSM server and AD server, and make the time of two servers be the same.

Root Cause

 Regular account on TSM server could pass the certification, but domain account failed, it says that the process of certification between TSM and AD matters. Access into the console of TSM server, add AD server related information into AD synchronization option again, and do certification test with test account. Certification failed as the result, because the system time discrepant more than 5 minutes, certification failed. 


 Because of time discrepant widely, domain account couldn’t pass the certification of AD, this mechanism exists in domain certification mechanism. TSM act as a middleware, if time discrepant with the time of AD widely, then all domain certification at TSM client failed.