OID: AD Password Filter Cannot Communicate Via SSL. ldapbindssl.exe Fails with: LDAP bindERROR | System Error Code: 87 | LDAP Error Code: 0 | Error Message: Server Unavailable (Doc ID 733671.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Internet Directory - Version 10.1.4 to 11.1.1 [Release 10gR3 to 11g]
Information in this document applies to any platform.
This problem can occur on any platform.

Symptoms

In preparation for setting up oidpasswd filter, the ldapbindssl.exe command is failing as follows:

Connecting server in SSL Mode
Checking if SSL is enabled
SSL is enabled
Binding...
LDAP bindERROR
System Error Code: 87
LDAP Error Code: 0
Error Message: Server Unavailable

However,  a local SSL bind mode U2 on the OID host is successful.

Review of the wallet using Oracle Wallet Manager shows all is configured properly with regards to the Server certificate and the Trusted Certificate Authorities.

Review of the MMC certificate store on the AD host shows that the certificates are also properly configured and Trusted Certficate Authorities are present.



Changes

An alternate OIDLDAPD configset was configured for SSL with the Wallet that was configured.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms