My Oracle Support Banner

SSL Connection Failures with Active Directory Connector after Java Upgrade: CertificateException: No subject alternative names matching IP address (Doc ID 2751248.1)

Last updated on FEBRUARY 26, 2021

Applies to:

Identity Manager Connector - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Identity Manager (OIM) SSL connections with Active Directory after upgrading the java version from jdk1.7.0_141 to jdk1.7.0_281, are unable to connect to Active Directory (AD).


ERROR
-----------------------



STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Have a working OIM 11.1.2.3 server with the AD User Management Connector and the domain is using Java 1.7.0_141
2. Update the Java Development Kit (JDK) used by the OIM Domain to 1.7.0_281
3. Attempt provision actions and see the above error in failing to connect to an LDAP server

Changes

Update the JDK from 1.7.0_141 to 1.7.0_281.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.