DIP 12c Configured to Connect to OID via SSL Mode 2 (Server Authentication) Fails with DIP Log Error: "Keystore was tampered with, or password was incorrect" "Caused by: java.security.UnrecoverableKeyException: Password verification failed"
(Doc ID 2984711.1)
Last updated on NOVEMBER 03, 2023
Applies to:
Oracle Internet Directory - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
Configured 12c Directory Integration Platform (DIP) Server to connect to Oracle Internet Directory (OID) using SSL mode 2 (server authentication mode) by following:
Oracle® Fusion Middleware Administering Oracle Directory Integration Platform 12c (12.2.1.4.0)
Chapter 6 Configuring Oracle Internet Directory
Section 6.3.2.1 Configuring Oracle Directory Integration Platform for Oracle Internet Directory SSL Server Authentication Only Mode
Enterprise Manager Fusion Middleware (EM FMW) Control > DIP > DIP Server > Configuration > "Test Connection" button fails with:
Data initialization failed. Please see EM server logs for more information.
Under the "SSL Settings" section, with "OID connect SSL Mode" field set to "SERVER_AUTH (mode 2)", it shows:
To connect in SSL mode 2, the JKS for DIP must exist and the required certificates be already available in it.
DIP Managed Server, e.g. wls_ods1, diagnostic log shows:
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |