Oracle Virtual Directory (OVD) Failed To Perform Secure LDAP Authentication / Errors: Remote Server Failure / Cannot start Oracle Virtual Directory server: Cannot recover key. (Doc ID 1347972.1)

Last updated on SEPTEMBER 15, 2016

Applies to:

Oracle Virtual Directory - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

After upgrading Oracle Virtual Directory (OVD) from Version 10.1.4.3 to 11.1.1.5.0, Secure LDAP authentication fails. When performing secure LDAP authentication, the OVD Server fails to respond and the following error is seen in the OVD log, for example:

Remote Server Failure:<Hostname>:1636

Further checks at the backend, i.e., DSEE Server, confirms that it is listening on port 1636 without any problems.

The following messages are reported in the OVD diagnostics.log file:

[2011-08-07T15:52:25.635+08:00] [octetstring] [ERROR] [OVD-60216] [com.octetstring.vde.VDEServer] [tid: 10][ecid: 0000J6ZEZhdDwWWFLzMMOA1EF^Gb000000,0] Cannot start Oracle Virtual Directory server: Cannot recover key.[[
java.security.UnrecoverableKeyException: Cannot recover key
at sun.security.provider.KeyProtector.recover(KeyProtector.java:311)
at sun.security.provider.JavaKeyStore.engineGetKey(JavaKeyStore.java:121)
at sun.security.provider.JavaKeyStore$JKS.engineGetKey(JavaKeyStore.java:38)
at java.security.KeyStore.getKey(KeyStore.java:763)
at com.sun.net.ssl.internal.ssl.SunX509KeyManagerImpl.<init>(SunX509KeyManagerImpl.java:113)
at com.sun.net.ssl.internal.ssl.KeyManagerFactoryImpl$SunX509.engineInit(KeyManagerFactoryImpl.java:48)
at javax.net.ssl.KeyManagerFactory.init(KeyManagerFactory.java:239)
at com.octetstring.vde.frontend.SocketListener.getSSLContext(SocketListener.java:121)
at com.octetstring.vde.frontend.SocketListener.init(SocketListener.java:86)
at com.octetstring.vde.admin.AdminService.init(AdminService.java:66)
at com.octetstring.vde.frontend.ListenerHandler.addListener(ListenerHandler.java:99)
at com.octetstring.vde.frontend.ListenerHandler.init(ListenerHandler.java:91)
at com.octetstring.vde.VDEServer.startServer(VDEServer.java:181)
at com.octetstring.vde.VDEServer.main(VDEServer.java:359)


Changes

Upgraded OVD from version 10.1.4.3 to 11.1.1.5.0.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms