My Oracle Support Banner

ZFS Storage Appliance (ZFSSA) How to clear LDAP Server Certificates which are expired on ZFSSA LDAP Appliance for Client Configuration (Doc ID 2483671.1)

Last updated on JANUARY 28, 2019

Applies to:

Oracle ZFS Storage ZS3-2 - Version All Versions to All Versions [Release All Releases]
7000 Appliance OS (Fishworks)
How to clear LDAP servers certificates which are expired on ZFSSA LDAP appliance for client configuration.

Symptoms

The SSL certificate was renewed on LDAP server and customer performed following steps on ZFSSA to import new certificates.

i) removed the LDAP servers from ZFSSA BUI under LDAP Services (by selecting each server and clicking delete icon)
ii) stop the LDAP service, then re-add LDAP servers using IP-address or LDAP server FQDN on SLDAP port 636 to accept the new certificates
from LDAP servers
iii) start the LDAP service.

But the certificates were not deleted on the appliance

Followed the documents below

Bug : 24450729 - AKD restart required for LDAP user authentication for BUI / admin user.
LDAP certificate validation fails with error openConnection:simple bind failed - Can't contact LDAP server (Doc ID 2445224.1)

Still certificates were not deleted on appliances.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.