My Oracle Support Banner

OUD running with IBM JDK - SSL Handshake Failures when LDAP Client Requests SSL v3 (Doc ID 1925390.1)

Last updated on NOVEMBER 14, 2019

Applies to:

Oracle Unified Directory - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

SSL connections fail with SSL handshake error messages.

For instance using ldapbind, with the "-U 1" option and value, from an OID install:

$ ldapbind -h <OUD_HOST> -p <LDAPS_PORT> -U 1
SSL handshake failed

OUD errors log excerpt:

======================================================================

[DATE/TIMESTAMP] CONNECT conn=NN from=<CLIENT_IP_ADDR>:<PORT> to=<SERVER_IP_ADDR>:<LDAPS_PORT> protocol=LDAPS
[DATE/TIMESTAMP] DISCONNECT conn=NN reason="I/O Error" msg="Client requested protocol SSLv3 not enabled or not supported"
...
[DATE/TIMESTAMP] CONNECT conn=NNN from=<CLIENT_IP_ADDR>:<PORT> to=<SERVER_IP_ADDR>:<LDAPS_PORT> protocol=LDAPS
[DATE/TIMESTAMP] DISCONNECT conn=NNN reason="I/O Error" msg="Client requested protocol SSLv3 not enabled or not supported"

======================================================================

Changes

OUD is running with IBM JDK:

dn: cn=System Information,cn=monitor
instancePath: /$INSTALL_PATH/Middleware/<OUD_INSTANCE>/OUD
javaVersion: 1.7.0
jvmArchitecture: 64-bit
...
jvmVersion: 2.7
...
operatingSystem: AIX 7.1 ppc64
javaVendor: IBM Corporation
...
javaHome: /usr/java71_64/jre
jvmVendor: IBM Corporation

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.