My Oracle Support Banner

Oracle Virtual Directory (OVD) Failed To Perform Secure LDAP Authentication / Errors: Remote Server Failure / Cannot start Oracle Virtual Directory server: Cannot recover key. (Doc ID 1347972.1)

Last updated on NOVEMBER 03, 2019

Applies to:

Oracle Virtual Directory - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

After upgrading Oracle Virtual Directory (OVD) from Version 10.1.4.3 to 11.1.1.5.0, Secure LDAP authentication fails. When performing secure LDAP authentication, the OVD Server fails to respond and the following error is seen in the OVD log, for example:

Remote Server Failure:<HOSTNAME>:<SSL_PORT>

Further checks at the backend, i.e., DSEE Server, confirms that it is listening on port  <SSL_PORT> without any problems.

The following messages are reported in the OVD diagnostics.log file:

[2011-08-07T15:52:25.635+08:00] [octetstring] [ERROR] [OVD-60216] [com.octetstring.vde.VDEServer] [tid: <TID>][ecid: <ECID>] Cannot start Oracle Virtual Directory server: Cannot recover key.[[
java.security.UnrecoverableKeyException: Cannot recover key
at sun.security.provider.KeyProtector.recover(KeyProtector.java:311)
at sun.security.provider.JavaKeyStore.engineGetKey(JavaKeyStore.java:121)
at sun.security.provider.JavaKeyStore$JKS.engineGetKey(JavaKeyStore.java:38)
at java.security.KeyStore.getKey(KeyStore.java:763)
at com.sun.net.ssl.internal.ssl.SunX509KeyManagerImpl.<init>(SunX509KeyManagerImpl.java:113)
at com.sun.net.ssl.internal.ssl.KeyManagerFactoryImpl$SunX509.engineInit(KeyManagerFactoryImpl.java:48)
at javax.net.ssl.KeyManagerFactory.init(KeyManagerFactory.java:239)
at com.octetstring.vde.frontend.SocketListener.getSSLContext(SocketListener.java:121)
at com.octetstring.vde.frontend.SocketListener.init(SocketListener.java:86)
at com.octetstring.vde.admin.AdminService.init(AdminService.java:66)
at com.octetstring.vde.frontend.ListenerHandler.addListener(ListenerHandler.java:99)
at com.octetstring.vde.frontend.ListenerHandler.init(ListenerHandler.java:91)
at com.octetstring.vde.VDEServer.startServer(VDEServer.java:181)
at com.octetstring.vde.VDEServer.main(VDEServer.java:359)


Changes

Upgraded OVD from version 10.1.4.3 to 11.1.1.5.0.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.