LDAPS Query With Certificate Based Client Authentication Returns Error -8101 in Errors Log (Doc ID 1562221.1)

Last updated on OCTOBER 24, 2016

Applies to:

Oracle Directory Server Enterprise Edition - Version 11.1.1.5.1 and later
Information in this document applies to any platform.

Symptoms

Adding certs to the DS as below:

/c/ldap/current/bin/dsadm add-cert -C /export/ltst3ap/ldap/slapd-instance/ ltst3ap /export/ltst3ap/ldap/alias/cert_636_srv.txt
/c/ldap/current/bin/dsadm add-cert -C /export/ltst3ap/ldap/slapd-instance/ CA-G1 /export/ltst3ap/ldap/alias/cert_CA_G1.txt
/c/ldap/current/bin/dsadm add-cert -C /export/ltst3ap/ldap/slapd-instance/ CA-G2 /export/ltst3ap/ldap/alias/cert_CA_G2.txt

 

and trying then to do a secure ldapsearch with certificate-based client authentication is not possible:

 

---

 

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms