EM13c : Post 13c Upgrade, LDAP Authentication not working when LDAP integrated with VIP (Doc ID 2124940.1)

Last updated on MARCH 08, 2017

Applies to:

Enterprise Manager Base Platform - Version 13.1.0.0.0 and later
Information in this document applies to any platform.

Symptoms

After upgrading to 13c Enterprise Manager (EM) Cloud Control, unable to login with LDAP users which is integrated with EM using Virtual IPAddress (VIP).

In this case there are two single AD Controllers configured.

When LDAP configuration is changed to directly point to any of the two single AD Controllers, Login was successful.

Error stack observed from the emoms.trc file:

<Warning> <Security> <BEA-099117> <The LDAP authentication provider named "ActiveDirectoryAuthenticator" failed to make connection to ldap server at
ldaps://<ipaddress>:<port>, the error cause is: server certificate change is restrictedduring renegotiation.>

[EMGC_OMS1] [NOTIFICATION] [] [oracle.ods.virtualization.engine.backend.jndi.ActiveDirectoryAuthenticator]
[tid: EMUI_14_44_30_/console/admin/rep/editUser] [userId: bcurtis] [ecid:005ApiBkwhNFw0^5PVCCyd0000rf0000Mc,0:1] [APP: emgc] [DSID:0000LB7Xh0zFw0^5PVCCyd1MiZS2000009] Priming the connection
pool.ldap://[<ipaddress>]:<port>

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms