AD/LDAP Connector Error "Network error: unable to get local issuer certificate"

Last Updated: Aug 20, 2024

Overview

A new LDAP Connection is created, and the adldap-6.1.8.exe agent is installed. When setting up the Ticket URL, it shows the following error:

Network error: unable to get local issuer certificate

Applies To

  • LDAP Connection
  • Ticket URL

Cause

This error indicates that a proxy changes the CA certificates used in responses to requests the LDAP connector makes, such as when behind a corporate proxy. Or the machine does not have the CA root certs in use by Auth0 trusted.

Solution

Please read this GitHub report, as it includes some potential reasons and solutions related to this error.

Please check that it is possible to establish a connection to Auth0 from the machine the connector is installed on. For example, visit https://login.auth0.com/test and check what certificates are presented to ensure the machine trusts the CAs.