My Oracle Support Banner

Ldapbind to OID using SSL mode 2 Fails with NZerr 28860 (Doc ID 1288171.1)

Last updated on OCTOBER 17, 2019

Applies to:

Oracle Internet Directory - Version and later
Information in this document applies to any platform.
***Checked for relevance on 06-Feb-2013***


OID was configured for SSL mode 2.
When trying ldapbind or ldapsearch to SSL port configured for Server Authentication (mode 2) it fails with:
UnKnown Error Encountered
OID log file shows:
SSLthread:11 * ERROR * gslsflnNegotiateSSL * SSL Hand Shake failed Source address: <IP_ADDRESS> * (NZerr 28860)


A new Configuration Set was added and configured for setting up OID in SSL Mode 2 (Server Authentication). New OID instance was started using this configset.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.