Product:
Cognos Analytics 12.0.3
Microsoft Windows 2022 server
Issue:
When saving in Cognos Configuration where you have setup SSO to AD, you get a error like below:
[ ERROR ] CAM-AAA-0146 The namespace ‘AD’ is not available.
[ ERROR ] CAM-AAA-0064 The function ‘Configure’ failed.
[ ERROR ] CAM-AAA-0089 The provider is not initialized.
[ ERROR ] CAM-AAA-0036 Unable to authenticate because the credentials are invalid.
[ ERROR ] ADSI Error:
8009030C: LdapErr: DSID-0C090604, comment: AcceptSecurityContext error, data 52e, v3839
System Error:
The user name or password is incorrect.
Solution:
You must start the cognos configuration program with a user that is part of the Active Directory domain. The credentials is passed to the AD DC server, and therefor you get this error. Same error will happen when you do a test.
You can also populate the BINDING with a valid AD user name and password, preferable for a service account, that do not change the password. If the BINDING is filled in, then you can run cognos configuration with a local user that is not part of the domain.
When the IBM Cognos Windows service is run by a valid AD user, then the user credentials who are logging in are passed to the AD DC server, for gathering of information – like what AD groups does the person belong to.
More Information:
https://www.ibm.com/docs/en/cognos-analytics/12.0.x?topic=new-known-issues-in-120x