cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSL Certificates

former_member2987
Active Contributor

on ‎04-06-2011 1:57 PM

0 Kudos

Hello there Experts,

I'm in the process of setting a certificate between IDM and Microsoft Active Directory 2008.

I've generated the certificate and imported it using Keytool, however, I'm still getting the error 

fromDSA.doSearch got exception, returning false
javax.naming.ServiceUnavailableException: ADSERVER.SERVER:636; socket closed

What I'm wondering is if I need to import the cert with a specific alais or to a specific account or even to the server itself.

Does anyone have a guide for setting this up?

Thanks,

Matt

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎04-11-2011 3:35 PM
0 Kudos

Hi Matt,

how was your certificate created? Automatically by the Microsoft CA? In which trust store did you import the certificate? Did you make sure that you import the Root CA certificate and not the certificate of the AD system?

Best regards

Holger

BTW: looking at the error messages: that does not really sound like a certificate problem.

Show replies
Show replies
Former Member
‎04-11-2011 3:40 PM
0 Kudos

And did you set the security option in the ToLDAP pass to SSL?

former_member2987
Active Contributor
‎04-11-2011 3:55 PM
0 Kudos

It was the root ca. Can you explain more about trust stores? I think this is where the disconnect is.

Matt

Former Member
‎09-19-2014 12:21 PM
0 Kudos

Hey Matt,

how did you solve?

I had imported root CA certificate into $JAVA_HOME/jre/lib//security/cacerts but when I try to test connection in IDM > Tools > Directory, I'm not able to made a connection and output is:

cannot open connection to <FQDN>:636.

J2EE instead is able to trust a connection with AD on 636 using the same CA certs.

Any ideas?

Regards,

    Andrea

Ask a Question