on 04-06-2011 1:57 PM
Hello there Experts,
I'm in the process of setting a certificate between IDM and Microsoft Active Directory 2008.
I've generated the certificate and imported it using Keytool, however, I'm still getting the error
fromDSA.doSearch got exception, returning false
javax.naming.ServiceUnavailableException: ADSERVER.SERVER:636; socket closed
What I'm wondering is if I need to import the cert with a specific alais or to a specific account or even to the server itself.
Does anyone have a guide for setting this up?
Thanks,
Matt
Hi Matt,
how was your certificate created? Automatically by the Microsoft CA? In which trust store did you import the certificate? Did you make sure that you import the Root CA certificate and not the certificate of the AD system?
Best regards
Holger
BTW: looking at the error messages: that does not really sound like a certificate problem.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hey Matt,
how did you solve?
I had imported root CA certificate into $JAVA_HOME/jre/lib//security/cacerts but when I try to test connection in IDM > Tools > Directory, I'm not able to made a connection and output is:
cannot open connection to <FQDN>:636.
J2EE instead is able to trust a connection with AD on 636 using the same CA certs.
Any ideas?
Regards,
Andrea
User | Count |
---|---|
84 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.