This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

GCDS Sync Error - Unable to authenticate: Connection reset

Posted on 02-01-2024 03:44 AM
peterhorner
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

We have a customer who have been using GCDS successfully for years but have now run into trouble. They intermittently receive the following message:

[2023-10-27 10:27:24,464+0100] [SwingWorker-pool-3-thread-4] [INFO] [sync.agent.FullSyncAgent] Applying computed changes to service.
[2023-10-27 10:27:24,593+0100] [SwingWorker-pool-3-thread-4] [ERROR] [plugin.google.OAuth2TicketVector] Unable to authenticate: Connection reset
[2023-10-27 10:27:24,594+0100] [SwingWorker-pool-3-thread-4] [ERROR] [plugin.google.GooglePlugin] Error while applying changes to remote directory.
com.google.usersyncapp.plugin.google.GoogleAuthenticationException: Unable to login
    at com.google.usersyncapp.plugin.google.OAuth2TicketVector.verifyApiConnection(OAuth2TicketVector.java:222) ~[DirSync.jar:?]
    at com.google.usersyncapp.plugin.google.OAuth2TicketVector.verify(OAuth2TicketVector.java:140) ~[DirSync.jar:?]
    ...

They've tried a different account to ensure it's authorised correctly. Additionally, they've checked firewall/network logs and there are no errors there. Google support advised to go back to a previous version but that hasn't helped.

Has anyone encountered this before?

0 2 642
Topic Labels
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
lawrencenelson
Staff
Reply posted on --/--/---- --:-- AM

Hi @peterhorner,

Welcome to the Google Cloud Community!

Based on your error codes:

[2023-10-27 10:27:24,593+0100] [SwingWorker-pool-3-thread-4] [ERROR] [plugin.google.OAuth2TicketVector] Unable to authenticate: Connection reset
[2023-10-27 10:27:24,594+0100] [SwingWorker-pool-3-thread-4] [ERROR] [plugin.google.GooglePlugin] Error while applying changes to remote directory.
com.google.usersyncapp.plugin.google.GoogleAuthenticationException: Unable to login
    at com.google.usersyncapp.plugin.google.OAuth2TicketVector.verifyApiConnection(OAuth2TicketVector.java:222) ~[DirSync.jar:?]
    at com.google.usersyncapp.plugin.google.OAuth2TicketVector.verify(OAuth2TicketVector.java:140) ~[DirSync.jar:?]

 Kindly attempt to double check the following and make sure they're properly configured [1]:

SocketException - Connection reset

- If you get this message when you're connecting to the LDAP server, the server has closed the connection. Possible reasons are:

  • You're using LDAP+SSL and the LDAP server isn't configured to accept the TLS parameters that GCDS supports (for example, cipher suite). Make sure your LDAP server has the latest security updates and settings.
  • A firewall rule is blocking the connection.

Authentication problem: Unable to connect using the credentials supplied

- The LDAP server is rejecting GCDS requests due to an authentication issue.

Make sure that the authorized user and their password are correct. You should add the authorized user using their complete DN. For details on adding the authorized user, go to LDAP connection settings.

[1]. https://support.google.com/a/answer/3011361?hl=en

Posted on --/--/---- --:-- AM
peterhorner
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Thanks Lawrence. It turned out to be an issue with the firewall/router dropping packets. This resulted in the connection with Google being reset.

Top Labels in this Space
Top Solution Authors
View all