My Oracle Support Banner

OID Java External Authentication Plugin Using SSL Mode Fails with: ldap_bind: Invalid credentials (Doc ID 462285.1)

Last updated on AUGUST 30, 2023

Applies to:

Oracle Internet Directory - Version 10.1.4.1 and later
Information in this document applies to any platform.

Symptoms

AD External Authentication does not work when configured for SSL:

ldapbind -h <OID_HOSTNAME> -p <PORT> -D 'cn=<USERNAME>,cn=users,dc=<COMPANY>,dc=com' -w <password>
ldap_bind: Invalid credentials

OIDLDAPD log shows error similar to:

java.io.IOException: The wallet "<PATH_TO_WALLET>/OID/admin/oid2cawallet_2" is not a 'normal' file

And:

2007/10/10:17:09:05 * ServerWorker (REG):7
ConnID:0 * mesgID:1 * OpID:0 * OpName:bind
ConnIP:<IP_ADDRESS>  ConnDN: Anonymous
INFO : gslfbidbDoBind * Version=3 BIND dn="CN=<USERNAME>,CN=Users,DC=<DOMAIN>,DC=<COMPANY>,DC=com" method=128
ConnId = 0, op=0, IpAddr=<IP_ADDRESS>
17:09:05 * CLASSPATH = -Djava.class.path=/<PATH>a/ldap/jlib/ospf.jar:/<PATH>/jlib/ldapjclnt10.j
ar:<PATH>/jlib/jssl-1_1.jar:<PATH>/jdbc/lib/classes12.zip:$CLASSPATH
17:09:06 * SUCCESS * sgslpvm_getJvmEnv * Creation of the JVM succeeded
17:09:06 * SUCCESS * sgslpvm_getJvmEnv * Attach to the JVM succeeded
17:09:07 * Server Java Plug-in * Entering oidexplg when_bind_replace
17:09:07 * Server Java Plug-in * Entering ExternalEntry with bind request
17:09:07 * Server Java Plug-in * User DN:CN=<USERNAME>,CN=Users,DC=<DOMAIN>,DC=<COMPANY>,DC=com
17:09:07 * Server Java Plug-in * eDN: CN=<USERNAME>,CN=Users,DC=<COMPANY2>,DC=com
17:09:07 * Server Java Plug-in * Entering ExternalConnectivity
17:09:10 * SUCCESS * gslsbbExecWhenReplacePlugin * Successfully Executed Java Pl
ug-in oidexplg.jar
17:09:10 * INFO * gslsbbExecWhenReplacePlugin * Operation Result Code returned f
rom the when_replace_bind Java plug-in : 49
17:09:10 * INFO : gsleswrASndResult2 RESULT = 49 nentries=0

--------------------------------------------------------------------------------------------------

Modifying the plugin settings to not use SSL results in successful authentication.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.