AD OID 10g Sync Failed in SSL Server Mode "DIP_GEN_CONNECTION_FAILURE" (Doc ID 1370339.1)

Last updated on OCTOBER 13, 2016

Applies to:

Oracle Internet Directory - Version 10.1.4.0.1 and later
Information in this document applies to any platform.

Symptoms

AD-OID synchronization in SSL server mode failed.
Bootstrap is successful.
ldapbind with OID in SSL server mode is successful.
ldapbind with AD in SSL mode 2 hangs.


<Profile name>.trc file Shows the following
:

ActiveChgImp:Error in Mapping EngineODIException: DIP_GEN_CONNECTION_FAILURE
javax.naming.CommunicationException: rameshAD.idc.oracle.com:636. Root exception is javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: Untrusted Server Certificate Chain
at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA6275(Compiled Code))
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275(Compiled Code))
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275(Inlined Compiled Code))
Caused by: java.security.cert.CertificateException: Untrusted Server Certificate Chain
at com.sun.net.ssl.X509TrustManagerJavaxWrapper.checkServerTrusted(DashoA6275(Compiled Code))
at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(DashoA6275(Compiled Code))




Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms