Description of problem:

Customer is facing the issue described in API calls to Red Hat Satellite 6 fail intermittently on LDAP authentication on their Red Hat Satellite 6.13 server.

How reproducible:

Always

Is this issue a regression from an earlier version:

Yes

Steps to Reproduce:

1. Configure external authentication for Red Hat Satellite 6.13 according to 5.3. Using Active Directory
2. Use an Active Directory user to run tasks on Red Hat Satellite server.

Actual behavior:

• As described in the customer's words, from time to time they suddenly experience that users lose Rights in satellite (LDAP Authentication still works), only certain users will lose their rights in Satellite.
• There are several connection resets detected in tcp dump collected on Satellite server while communicating with all 4 domain controllers the customer has.. Issue seems to be connected with the TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 cipher which is being used by Satellite server to communicate with the domain controllers via LDAPS, and which is known to occasionally return errors on Windows machines. See  API calls to Red Hat Satellite 6 fail intermittently on LDAP authentication
• Earlier, customer tested with separate domain controllers configured as individual authentication sources, and they were still facing the issue.
• Customer tested with LDAP instead of LDAPS, and so far it is running smoothly.
• Customer's Active Directory domain controllers are running on Windows Server 2016

Expected behavior:
Customer is able to use an Active Directory user to run tasks on Satellite server without encountering this issue.

Business Impact / Additional info:

Customer's production is impacted as Linux deployments are not possible when the Automation user loses permissions.