AD Password Filter - SSL ldapbind Fails With AD Event Log Error: UnKnown Error Encountered
(Doc ID 734697.1)
Last updated on JULY 01, 2016
Applies to:Oracle Internet Directory - Version 10.1.4 and later
Information in this document applies to any platform.
***Checked for relevance *** ***07-OCT-2013***
- ldapbindssl.exe that is installed as part of AD Password Filter installation can successfully be run, however when configuring the SSL for the ActiveExport synchronization profile, an SSL ldapbind to the AD host fails with the following error:
ldapbind -D 'firstname.lastname@example.org' -w Passw0rd -U 2 -h xxx.xxxx.xxxx.org -p 636 -W
file://oracle/app/product/AS10gInfraR3/ldap/WALLETS/oid -P yyyyyyyy
UnKnown Error Encountered
- Bi-directional Active Directory / OID synchronization has been setup using Oracle Directory Integration Platform (DIP)
- Password changes are being synced from AD to OID using the AD Password Filter
- An examination of the Event Log on Microsoft Active Directory Host reveals the following details:
Event Type: Error
Event Source: Schannel
Event Category: None
Event ID: 36874
Time: 9:28:53 AM
An SSL connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Addition or configuration of an oidldapd configset that has been setup for SSL with a wallet.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document