ODSEE 11g - Loss of "dsconf" Functionality with "--accept-cert" Sub-Command After Upgrading JAVA to 7u191 or Greater
(Doc ID 2486947.1)
Last updated on JULY 03, 2019
Applies to:
Oracle Directory Server Enterprise Edition - Version 11.1.1.7.171017 and laterInformation in this document applies to any platform.
Symptoms
On : 11.1.1.7.171017 version, Administration
The ability to use dsconf with the "--accept-cert" functionality in ODSEE 11.1.1.7.171017 was lost after JAVA upgrade
Example command output:
The following error is encountered:
Make sure an LDAPS server is listening on "localhost:30009".
The "list-suffixes" operation failed on "localhost:30009".
When checking the logs the following message is observed:
conn=35 op=0 msgId=-1 - closing from <localhost>:58432 - B4 - Server failed to flush BER data back to client -
conn=35 op=-1 msgId=-1 - closed.
When reverting back to 7u181 then everything worked as expected, it could handle "--accept-cert" correctly.
ERROR
-----------------------
B4 - Server failed to flush BER data back to client -
STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. upgrade java
2. run command "$SERVER_ROOT/bin/dsconf list-suffixes -E --accept-cert -h localhost -P 30099 -D "$BACKUP_ACCT" -w tmp-file.txt "
3. receive error
BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot use dsconf using a secure option as provided in command usage.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |