My Oracle Support Banner

DIP 12c Configured to Connect to OID via SSL Mode 2 (Server Authentication) Fails with DIP Log Error: "Keystore was tampered with, or password was incorrect" "Caused by: Password verification failed" (Doc ID 2984711.1)

Last updated on NOVEMBER 03, 2023

Applies to:

Oracle Internet Directory - Version and later
Information in this document applies to any platform.


Configured 12c Directory Integration Platform (DIP) Server to connect to Oracle Internet Directory (OID) using SSL mode 2 (server authentication mode) by following:

Oracle® Fusion Middleware Administering Oracle Directory Integration Platform 12c (
Chapter 6 Configuring Oracle Internet Directory
Section Configuring Oracle Directory Integration Platform for Oracle Internet Directory SSL Server Authentication Only Mode

Enterprise Manager Fusion Middleware (EM FMW) Control > DIP > DIP Server > Configuration > "Test Connection" button fails with:

(x) Error
Data initialization failed. Please see EM server logs for more information.

Under the "SSL Settings" section, with "OID connect SSL Mode" field set to "SERVER_AUTH (mode 2)", it shows:

(!) Warning
To connect in SSL mode 2, the JKS for DIP must exist and the required certificates be already available in it.

DIP Managed Server, e.g. wls_ods1, diagnostic log shows:




To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.