My Oracle Support Banner

OBIEE 12: Enabling SSL For LDAP Results In Being Unable To Login To BI Analytics as LDAP or weblogic user (Doc ID 2273757.1)

Last updated on AUGUST 19, 2019

Applies to:

Business Intelligence Server Enterprise Edition - Version 12.2.1.0.0 to 12.2.1.2.180717 [Release 12g]
Information in this document applies to any platform.

Symptoms

You configured an external LDAP for OBIEE.

You have another Authentication provider in place ( e.g. the Default Embedded LDAP, BISQLGroupProvider, or any other LDAP ...)

Your setup is working properly when the LDAP is configured in Non-SSL mode, but once you configure SSL for any of the external LDAPs, the whole setup breaks.

Steps in Security Guide, section "Configuring SSL when Using Multiple Authenticators" was followed to create the custom keystore for libOVD. The cacerts keystore in the JDK installation also includes the root CA.

Enabling SSL for LDAP results being unable to login to BI Analytics as LDAP or weblogic user, and gives the below message in bi_server1-diagnostic.log file. LDAP over SSL to the AD server on port 636 has been verified to be working, and uses a certificate issues from the same root CA that is included in all of the keystores mentioned above.

 

Changes

 LDAP communications is configured to use SSL.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.