SSL Connection Failures with Active Directory Connector after Java Upgrade: CertificateException: No subject alternative names matching IP address
(Doc ID 2751248.1)
Last updated on FEBRUARY 26, 2021
Applies to:Identity Manager Connector - Version 18.104.22.168.0 and later
Information in this document applies to any platform.
Oracle Identity Manager (OIM) SSL connections with Active Directory after upgrading the java version from jdk1.7.0_141 to jdk1.7.0_281, are unable to connect to Active Directory (AD).
The issue can be reproduced at will with the following steps:
1. Have a working OIM 22.214.171.124 server with the AD User Management Connector and the domain is using Java 1.7.0_141
2. Update the Java Development Kit (JDK) used by the OIM Domain to 1.7.0_281
3. Attempt provision actions and see the above error in failing to connect to an LDAP server
Update the JDK from 1.7.0_141 to 1.7.0_281.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document