This section contains information on the following error messages:
The eDirectory replica synchronization process tried to start encrypted replication with the target server. But the target eDirectory server has the encrypted replica synchronization process disabled
Encrypted replication is disabled on the target eDirectory server.
Enable encrypted replication on the target eDirectory server.
An application (client access) tried to access an encrypted attribute over a clear text channel.
eDirectory or NDS
The encrypted attributes are configured to be accessed only over a secure channel. The application is trying to access the encrypted attributes over a clear text channel.
The application should access the encrypted attributes through a secure channel, like LDAP secure channel or HTTP secure channel.
If you get this error during replication, one or more servers in the replica ring have some attributes marked for encryption and are configured to be accessed only over secure channel.
Change the configuration of the encrypted attribute policy, so that the encrypted attributes can be accessed over insecure channels. For more information, refer to the NetIQ eDirectory 8.8 SP8 Administration Guide.
If you get this error when encrypted replication is configured at the partition level or between the replicas of the partition, then the replica ring has pre-eDirectory 8.8 servers in it.
Upgrade all the servers in the replica ring to a version compatible with eDirectory 8.8.
Text goes here
If encrypted replication is enabled at a partition level and if you are trying to add a replica of this partition to an eDirectory server, then the eDirectory version on this server is incompatible with the version on the source server.
Upgrade the server to a compatible version of eDirectory.
If the parent partition has pre-eDirectory 8.8 servers (mixed version ring) and if the child partition has ER enabled, the merge and/or join partition operations would be disallowed and the ERR_INCOMPATIBLE_DS_VERSION error will be returned.
The reason for this is that the child partition contains sensitive data with ER enabled at the partition level and the parent partition having pre-eDirectory 8.8 server. With ER enabled only between eDirectory 8.8 servers, on merging, sensitive data is exposed when replicating to pre-eDirectory 8.8 servers.
Upgrade the server to a compatible version of eDirectory.
OR
Disable ER at the parent or child partition.
NOTE:On disabling ER, replication will happen in the clear text form.