OUD running with IBM JDK - SSL Handshake Failures when LDAP Client Requests SSL v3
(Doc ID 1925390.1)
Last updated on SEPTEMBER 23, 2021
Applies to:
Oracle Unified Directory - Version 11.1.2.2.0 and laterInformation in this document applies to any platform.
Symptoms
SSL connections fail with SSL handshake error messages.
For instance using ldapbind, with the "-U 1" option and value, from an OID install:
$ ldapbind -h <OUD_HOST> -p <LDAPS_PORT> -U 1
SSL handshake failed
OUD errors log excerpt:
======================================================================
[DATE/TIMESTAMP] CONNECT conn=NN from=<CLIENT_IP_ADDR>:<PORT> to=<SERVER_IP_ADDR>:<LDAPS_PORT> protocol=LDAPS
[DATE/TIMESTAMP] DISCONNECT conn=NN reason="I/O Error" msg="Client requested protocol SSLv3 not enabled or not supported"
...
[DATE/TIMESTAMP] CONNECT conn=NNN from=<CLIENT_IP_ADDR>:<PORT> to=<SERVER_IP_ADDR>:<LDAPS_PORT> protocol=LDAPS
[DATE/TIMESTAMP] DISCONNECT conn=NNN reason="I/O Error" msg="Client requested protocol SSLv3 not enabled or not supported"
======================================================================
Changes
OUD is running with IBM JDK:
dn: cn=System Information,cn=monitor
instancePath: /$INSTALL_PATH/Middleware/<OUD_INSTANCE>/OUD
javaVersion: 1.7.0
jvmArchitecture: 64-bit
...
jvmVersion: 2.7
...
operatingSystem: AIX 7.1 ppc64
javaVendor: IBM Corporation
...
javaHome: /usr/java71_64/jre
jvmVendor: IBM Corporation
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |