OBIEE 12: Enabling SSL For LDAP Results In Being Unable To Login To BI Analytics as LDAP or weblogic user
(Doc ID 2273757.1)
Last updated on NOVEMBER 30, 2024
Applies to:
Business Intelligence Server Enterprise Edition - Version 12.2.1.0.0 to 12.2.1.2.180717 [Release 12g]Information in this document applies to any platform.
Symptoms
OBIEE is configured with an external LDAP.
There is another Authentication provider in place (e.g. the Default Embedded LDAP, BISQLGroupProvider, or any other LDAP).
The setup is working properly when the LDAP is configured in Non-SSL mode, but once SSL is enabled for any of the external LDAPs, the whole setup breaks.
Steps in Security Guide, section "Configuring SSL when Using Multiple Authenticators" was followed to create the custom keystore for libOVD. The cacerts keystore in the JDK installation also includes the root CA.
Enabling SSL for LDAP results being unable to login to BI Analytics as LDAP or weblogic user, and gives the below message in bi_server1-diagnostic.log file. LDAP over SSL to the AD server on port 636 has been verified to be working, and uses a certificate issues from the same root CA that is included in all of the keystores mentioned above.
Changes
LDAP communications is configured to use SSL.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |