Ldapbind to OID using SSL mode 2 Fails with NZerr 28860

(Doc ID 1288171.1)

Last updated on OCTOBER 26, 2017

Applies to:

Oracle Internet Directory - Version 10.1.4.3 and later
Information in this document applies to any platform.
***Checked for relevance on 06-Feb-2013***

Symptoms

OID was configured for SSL mode 2.
When trying ldapbind or ldapsearch to SSL port configured for Server Authentication (mode 2) it fails with:
UnKnown Error Encountered
OID log file shows:
SSLthread:11 * ERROR * gslsflnNegotiateSSL * SSL Hand Shake failed Source address: xxx.xxx.xxx.xxx * (NZerr 28860)

Changes

A new Configuration Set was added and configured for setting up OID in SSL Mode 2 (Server Authentication). New OID instance was started using this configset.


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms