My Oracle Support Banner

OUD - Client Authentication Failure: "The SASL EXTERNAL bind request could not be processed because the client did not present a certificate chain during SSL/TLS negotiation" (Doc ID 1396274.1)

Last updated on SEPTEMBER 11, 2019

Applies to:

Oracle Unified Directory - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Purpose

User client authentication is failing, as the user client certificate is not in a valid certificate chain

[18/Jan/2012:17:48:44 +0100] BIND RES conn=2 op=0 msgID=1 result=49 authFailureID=1245310 authFailureReason="The SASL EXTERNAL bind request could not be processed because the client did not present a certificate chain during SSL/TLS negotiation" etime=6
[18/Jan/2012:17:48:44 +0100] DISCONNECT conn=2 reason="Client Disconnect"

Troubleshooting Steps

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Troubleshooting Steps
 1) Prerequisite
 2) Problem description
 3) Cause determination
 3.1) import CA certificate in client keystore
 3.2) import  user signed reply certificate into client keystore
 4) ldap command verification
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.