OBIEE 12: Enabling SSL For LDAP Results In Being Unable To Login To BI Analytics as LDAP or weblogic user (Doc ID 2273757.1)

Last updated on JUNE 01, 2023

Applies to:

Symptoms

OBIEE is configured with an external LDAP.

There is another Authentication provider in place (e.g. the Default Embedded LDAP, BISQLGroupProvider, or any other LDAP).

The setup is working properly when the LDAP is configured in Non-SSL mode, but once SSL is enabled for any of the external LDAPs, the whole setup breaks.

Steps in Security Guide, section "Configuring SSL when Using Multiple Authenticators" was followed to create the custom keystore for libOVD. The cacerts keystore in the JDK installation also includes the root CA.

Enabling SSL for LDAP results being unable to login to BI Analytics as LDAP or weblogic user, and gives the below message in bi_server1-diagnostic.log file. LDAP over SSL to the AD server on port 636 has been verified to be working, and uses a certificate issues from the same root CA that is included in all of the keystores mentioned above.

Changes

LDAP communications is configured to use SSL.

Cause

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.