My Oracle Support Banner

DBMS_LDAP From Database with Latest PSU to MS AD Over TLSv1.2 SSL Protocol Fails with: ORA-31203: DBMS_LDAP: PL/SQL - Init Failed, Or: ORA-31202: DBMS_LDAP: LDAP client/server error: SSL handshake failed. Ldapbind Fails with: SSL handshake failed (Doc ID 2550104.1)

Last updated on JUNE 28, 2019

Applies to:

Oracle Internet Directory - Version 11.1.1 and later
Information in this document applies to any platform.

Symptoms

Oracle RDBMS Database (DB) with latest PSU.

Dbms_ldap from DB to a previous Microsoft (MS) Active Directory (AD) LDAP server works over SSL.

However the same code against a new AD server fails with:

ORA-31203: DBMS_LDAP: PL/SQL - Init Failed.
ORA-06512: at "SYS.DBMS_SYS_ERROR", line 79
ORA-06512: at "SYS.DBMS_LDAP", line 50
ORA-06512: at line 23
31202. 00000 - "DBMS_LDAP: PL/SQL - Init Failed."
*Cause: There has been an error in the DBMS_LDAP Init operation.
*Action: Please check the host name and port number, or report
        the error number and description to Oracle Support.

Or:

ORA-31202: DBMS_LDAP: LDAP client/server error: SSL handshake failed.


Command line ldapbind from the DB server command prompt to the same AD fails with:

 

Tried:  DB 11g on Windows: DBMS_LDAP / ldapbind Fails to Connect to TLS Enabled Active Directory "ORA-31202: DBMS_LDAP: LDAP client/server error: SSL handshake failed" (Doc ID 2511076.1).
However already using the latest DB PSU (and the platform is not Windows), and also relinked ldap client as per Doc ID 19285025.8 post all patching.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.