How To Get LDAPS URLs, Applications, HealthCheck Monitors, etc, Successfully Working With OID's Default SSL Port (Mode 1 SSL - Encryption Only / No SSL Authentication)? (Doc ID 1083412.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version 9.0.4 and later
Information in this document applies to any platform.
***Checked for relevance on 12-Feb-2013***

Goal

Using Oracle Internet Directory (OID) 10g (9.0.4 or higher) or 11g configured with default SSL mode 1 (encryption only, no ssl authentication).

Testing command line ldapbind to the SSL port works fine, for example:

> ldapbind -h myoidhost -p 636 -U 1 -D cn=orcladmin -q
> bind successful


And so does an ldapsearch, for example:

ldapsearch -h myoidhost -p 636 -U 1 -s sub -b "dc=mycompany,dc=com" "(cn=myuser*)"
cn=myuser, cn=Users,dc=mycompany,dc=com
...<etc, etc>...


When configuring an application that accepts an ldap url, via non-ssl port it works, and it also works from a browser, for example:

ldap://myoidhost:389/dc=mycompany,dc=com??sub?(cn=myuser*)


From IE, this returns a popup with the properties/attributes for the myuser entry.

However, the application and the browser fails when using an ldaps url to the SSL 636:

ldaps://myoidhost:636/dc=mycompany,dc=com??sub?(cn=myuser*)


From IE, this returns error: The webpage cannot be displayed.

How to get ldaps URL's, apps, health check apps, etc., working with the default OID mode 1 SSL port?

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms