OVD 11.1.1.9 With TLS Patches Applied AD adapter Errors with "No appropriate protocol (protocol is disabled or cipher suites are inappropriate)"
(Doc ID 2547272.1)
Last updated on AUGUST 30, 2023
Applies to:
Oracle Virtual Directory - Version 11.1.1.9.0 and laterInformation in this document applies to any platform.
Symptoms
After applying changes as per Note OVD 11g and libOVD Support For TLSv1.0, TLSv1.1, TLSv1.2 (Doc ID 2043227.1)
AD users are not able to login with SSO.
The following errors are found in the OVD diagnostics log:
[2019-04-28T10:49:40.830+03:00] [octetstring] [ERROR] [OVD-60143] [com.octetstring.vde.backend.jndi.<ADAPTER_NAME>.BackendJNDI] [tid: sss] [ecid: <ECID>
] [#<ADAPTER_NAME>] Unable to create connection to ldap://[<HOSTNAME >]:<SSL_PORT> as null.[[
javax.naming.CommunicationException: simple bind failed: <HOSTNAME>:<SSL_PORT> [Root exception is javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suit
es are inappropriate)]
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:218)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2740)
at com.sun.jndi.ldap.LdapCtx.(LdapCtx.java:316)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:211)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:154)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:84)
Changes
Applied all TLS patches for OVD according to NOTE OVD 11g and libOVD Support For TLSv1.0, TLSv1.1, TLSv1.2 (Doc ID 2043227.1)
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |