My Oracle Support Banner

OID SSL Server Auth Configuration Fails if the Wallet Name Contains "sso" keyword (Doc ID 2674523.1)

Last updated on JUNE 01, 2020

Applies to:

Oracle Internet Directory - Version 11.1.1.9.0 and later
Information in this document applies to any platform.

Symptoms

On : 11.1.1.9.0 version, OID LDAP Server
Trying to setup OID in SSL Server Auth mode. For this purpose,  a wallet was created from Enterprise Manager and the wallet name contains "sso" word ( For example, myssowallet )

After restarting OID, following symptoms noticed

1. EM Shows the following error accessing OID component

Failed to load server configuration.Check the Internet Directory Server logs. Possible Error :"<oid_host>:<oid_ssl_port>"

 

2. ldapbind fails with "Unable to open wallet" error

ldapbind -h <OID_HOST> -p <OID_SSL_PORT> -D "cn=orcladmin" -w <password> -U 2 -W "<Wallet_Location>" -P ""

Unable to open wallet

3. OID log shows the following error during startup

[OID] [ERROR:8] [23159] [OIDLDAPD] [host: xxxxxx] [pid: xxxxx] [tid: 2] ServerListener : In gslsfliInitnzoscontext, failure with NZ 28759 when opening wallet <wallet_location>.

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: xxxxx] [pid: xxxxx] [tid: 2] ServerListener : SSL wallet configuration incorrect,switching to SSL NO-AUTH mode.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.