OBIEE 12: Enabling SSL For LDAP Results In Being Unable To Login To BI Analytics as LDAP or weblogic user
(Doc ID 2273757.1)
Last updated on OCTOBER 18, 2019
Applies to:Business Intelligence Server Enterprise Edition - Version 126.96.36.199.0 to 188.8.131.52.180717 [Release 12g]
Information in this document applies to any platform.
You configured an external LDAP for OBIEE.
You have another Authentication provider in place ( e.g. the Default Embedded LDAP, BISQLGroupProvider, or any other LDAP ...)
Your setup is working properly when the LDAP is configured in Non-SSL mode, but once you configure SSL for any of the external LDAPs, the whole setup breaks.
Steps in Security Guide, section "Configuring SSL when Using Multiple Authenticators" was followed to create the custom keystore for libOVD. The cacerts keystore in the JDK installation also includes the root CA.
Enabling SSL for LDAP results being unable to login to BI Analytics as LDAP or weblogic user, and gives the below message in bi_server1-diagnostic.log file. LDAP over SSL to the AD server on port 636 has been verified to be working, and uses a certificate issues from the same root CA that is included in all of the keystores mentioned above.
LDAP communications is configured to use SSL.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document