My Oracle Support Banner

How To Get LDAPS URLs, Applications, HealthCheck Monitors, etc, Successfully Working With OID's Default SSL Port (Mode 1 SSL - Encryption Only / No SSL Authentication)? (Doc ID 1083412.1)

Last updated on JANUARY 30, 2022

Applies to:

Oracle Internet Directory - Version 9.0.4 and later
Information in this document applies to any platform.

Goal

Using Oracle Internet Directory (OID) 10g (9.0.4 or higher) or 11g configured with default SSL mode 1 (encryption only, no ssl authentication).

Testing command line ldapbind to the SSL port works fine, for example:

> ldapbind -h <OID_HOSTNAME> -p <SSL_PORT> -U 1 -D cn=orcladmin -q
> bind successful


And so does an ldapsearch, for example:

ldapsearch -h <OID_HOSTNAME> -p <SSL_PORT> -U 1 -s sub -b "dc=<COMPANY>,dc=com" "(cn=<USERNAME>*)"
cn=<USERNAME>, cn=Users,dc=<COMPANY>,dc=com
...<etc, etc>...


When configuring an application that accepts an ldap url, via non-ssl port it works, and it also works from a browser, for example:

ldap://<OID_HOSTNAME>:<NON_SSL_PORT>/dc=<COMPANY>,dc=com??sub?(cn=<USERNAME>*)


From IE, this returns a popup with the properties/attributes for the <USERNAME> entry.

However, the application and the browser fails when using an ldaps url to the  <SSL_PORT>:

ldaps://<OID_HOSTNAME>:<SSL_PORT>/dc=<COMPANY>,dc=com??sub?(cn=<USERNAME>*)


From IE, this returns error: The webpage cannot be displayed.
How to get ldaps URL's, apps, health check apps, etc., working with the default OID mode 1 SSL port?

 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.