My Oracle Support Banner

OVD 11.1.1.9 With TLS Patches Applied AD adapter Errors with "No appropriate protocol (protocol is disabled or cipher suites are inappropriate)" (Doc ID 2547272.1)

Last updated on DECEMBER 02, 2019

Applies to:

Oracle Virtual Directory - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Symptoms


After applying changes as per Note OVD 11g and libOVD Support For TLSv1.0, TLSv1.1, TLSv1.2 (Doc ID 2043227.1)

AD users are not able to login with SSO.

The following errors are found in the OVD diagnostics log:

[2019-04-28T10:49:40.830+03:00] [octetstring] [ERROR] [OVD-60143] [com.octetstring.vde.backend.jndi.<ADAPTER_NAME>.BackendJNDI] [tid: sss] [ecid: <ECID>
] [#<ADAPTER_NAME>] Unable to create connection to ldap://[<HOSTNAME >]:<SSL_PORT> as null.[[
javax.naming.CommunicationException: simple bind failed: <HOSTNAME>:<SSL_PORT> [Root exception is javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suit
es are inappropriate)]
  at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:218)
  at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2740)
  at com.sun.jndi.ldap.LdapCtx.(LdapCtx.java:316)
  at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:193)
  at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:211)
  at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:154)
  at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:84)



Changes

 Applied all TLS patches for OVD according to NOTE OVD 11g and libOVD Support For TLSv1.0, TLSv1.1, TLSv1.2 (Doc ID 2043227.1)

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.