ODSEE 11g - Solaris Native ldapsearch vs ODSEE ldapsearch with SSL (Doc ID 2237636.1)

Last updated on MARCH 03, 2017

Applies to:

Oracle Directory Server Enterprise Edition - Version 6.0 and later
Information in this document applies to any platform.

Goal

Why does Solaris 10 /usr/bin/ldapsearch command fail for SSL while the ./dseeX/bin/dsrk/bin/ldapsearch succeed?

Eg,

Test from Solaris /usr/bin/ldapsearch which fails:

/usr/bin/ldapsearch -h odsee-lab2 -p 8636 -Z -P /var/ldap/cert8.db -D "cn=proxy manager" -w xxx -b "" -s base "objectclass=*" dn
ldap_simple_bind: Can't contact LDAP server

ODSEE DPS access log showing:

[27/Feb/2017:15:44:20 -0500] - CONNECT - INFO - conn=38 client=10.64.201.231:33099 server=odsee-lab2.us.oracle.com:8636 protocol=LDAPS
[27/Feb/2017:15:44:20 -0500] - OPERATION - INFO - conn=38 DISCONNECT [Thread Worker Thread 10]
[27/Feb/2017:15:44:20 -0500] - DISCONNECT - INFO - conn=38 reason="other" msg="Exception caught while polling client connection LDAPS.10.64.201.231.33099 -- javax.net.ssl.SSLException: Received fatal alert: bad_certificate"

Test from /opt/11.1.1.7.0/dsee7/dsrk/bin/ldapsearch

/opt/11.1.1.7.0/dsee7/dsrk/bin/ldapsearch -h odsee-lab2 -p 8636 -D "cn=proxy manager" -w xxxx -Z -P /tmp/cert_db/ -b "" -s base "objectclass=*" dn

version: 1
dn:

 

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms