Oracle ZFS Storage Appliance: Unable to Join LDAP using SSL/TSL - failed to connect to XX.XX.XX.XX:636: dh key too small (Doc ID 2195970.1)

Last updated on NOVEMBER 02, 2016

Applies to:

Oracle ZFS Storage ZS3-2 - Version All Versions and later
Oracle ZFS Storage ZS3-4 - Version All Versions and later
Oracle ZFS Storage ZS3-BA - Version All Versions and later
Oracle ZFS Storage ZS4-4 - Version All Versions and later
Oracle ZFS Storage Appliance Racked System ZS4-4 - Version All Versions and later
7000 Appliance OS (Fishworks)

Symptoms

Long running configuration using Secure LDAP. The LDAP Administrator deployed new SHA256 root server certificates on the LDAP Server which required the LDAP clients be updated with the new certificate.

When adding the LDAP server authentication, it would fail with "dh key too small" error message.

Changes

The ZS3-2, when initially configured for the LDAP server, was running an older version of the NAS software.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms