My Oracle Support Banner

Oracle Linux: Intermittent LDAP User Login Issue with Messages "certmonger: Server failed request, will retry: -504 ... routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version)" (Doc ID 2729357.1)

Last updated on NOVEMBER 19, 2020

Applies to:

Linux OS - Version Oracle Linux 5.0 to Oracle Linux 5.11 [Release OL5 to OL5U11]
Information in this document applies to any platform.

Symptoms

Intermittent login issue of LDAP users in Exalogic system. Following errors in /var/log/messages can be seen:

Oct 12 07:26:12 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version).
Oct 12 07:31:42 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version).
Oct 12 07:33:00 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID1>' not found in domain '<domain-name>'
Oct 12 07:37:12 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version).
Oct 12 07:42:42 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version). 
Oct 12 07:43:00 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID1>' not found in domain '<domain-name>'

Oct 12 07:45:30 hostname rpc.idmapd[10479]: nss_getpwnam: name 'pin' not found in domain '<domain-name>'
Oct 12 07:48:12 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version).

Oct 12 07:53:00 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID1>' not found in domain '<domain-name>'
Oct 12 07:53:19 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID2>' not found in domain '<domain-name>'

Oct 12 07:53:26 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID3>' not found in domain '<domain-name>'
Oct 12 07:53:28 hostname rpc.idmapd[10479]: nss_getpwnam: name '<user-ID4>' not found in domain '<domain-name>'

Oct 12 07:53:42 hostname certmonger: Server failed request, will retry: -504 (libcurl failed to execute the HTTP POST transaction. error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version).

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.