Timeout error while setting up an LDAP connection

Cannot set up a connection with your LDAP server.

Symptoms

While setting up an LDAP connection, you might see a 504 Gateway timeout error.

Cause

The connection needs more time than usual to be established.

Resolving the problem

To resolve the issue, increase the LDAP configuration timeout value in the platform-auth-idp configmap to a value in the range 25-60 seconds.

1. Log in to your infrastructure node by using the oc login command.

2. Edit the platform-auth-idp configmap.

   oc -n <your-foundational-services-namespace> edit configmap platform-auth-idp
   

3. Change the AUTH_SVC_LDAP_CONFIG_TIMEOUT: "25" parameter value to a higher value. For example, "45". The value is in seconds.

4. Save the changes.

5. Restart the auth-idp pods by deleting the pods.

   1. Get the auth-idp pod names.

      oc -n <your-foundational-services-namespace> get pods | grep auth-idp
      

   2. Delete the auth-idp pod.

      oc -n <your-foundational-services-namespace> delete pods <pod-name>
      

Wait for some time and then check the status of the auth-idp pods. The status of all auth-idp pods must show as Running.

oc -n <your-foundational-services-namespace> get pods | grep auth-idp