 |  |  |  |  |  |  |  |
SSL LADP error with Java
Please support our Java advertiser: Programming Forums - DaniWeb Sister Site
 |
Hello All,
I know this is a lengthy post but I wanted to provide all the information I had thanks in advance for reading through it!
Objective
Authenticate to Active Directory LDAP over port 636 using JAVA code.
Steps already taken:
Install CA on domain controller
Verify DC is listening on 636
Add DC root certificate to windows trusted roots on client computer
Connect to DC over 636 using MS LDP utility from both DC and client - Success
used the following keytool command to create ca.jks and .keystore files:
keytool -import -alias aliasname -keystore keystore.jks -file c:\trustedroot.cer
Also tried the same command with -trustcacerts
Also tried keytool command to import trusted root into the cacerts file in java/.../lib/security
Problem
Using Java code hosted on Weblogic, can connect successfully to LDAP using port 389
When attempting to connect using 636 getting the following error:
javax.naming.CommunicationException: simple bind failed: ourdc:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found]
The strange thing is that we overcame this same problem by logging in as the domain admin on the bea server in development and requesting a server cert from the DC CA. That seemed to resolve it temporarily but then it broke again after a reboot. During the time that it worked, we verified that the Java code is working fine as we were able to perform the functions we want to perform.
Now that we want to deploy to production and have followed the same steps, we're still getting this error.
We just can't seem to keep SSL working consistently.
Thanks again any leads will be greatly appreciated.
AJZ
I know this is a lengthy post but I wanted to provide all the information I had thanks in advance for reading through it!
Objective
Authenticate to Active Directory LDAP over port 636 using JAVA code.
Steps already taken:
Install CA on domain controller
Verify DC is listening on 636
Add DC root certificate to windows trusted roots on client computer
Connect to DC over 636 using MS LDP utility from both DC and client - Success
used the following keytool command to create ca.jks and .keystore files:
keytool -import -alias aliasname -keystore keystore.jks -file c:\trustedroot.cer
Also tried the same command with -trustcacerts
Also tried keytool command to import trusted root into the cacerts file in java/.../lib/security
Problem
Using Java code hosted on Weblogic, can connect successfully to LDAP using port 389
When attempting to connect using 636 getting the following error:
javax.naming.CommunicationException: simple bind failed: ourdc:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found]
The strange thing is that we overcame this same problem by logging in as the domain admin on the bea server in development and requesting a server cert from the DC CA. That seemed to resolve it temporarily but then it broke again after a reboot. During the time that it worked, we verified that the Java code is working fine as we were able to perform the functions we want to perform.
Now that we want to deploy to production and have followed the same steps, we're still getting this error.
We just can't seem to keep SSL working consistently.
Thanks again any leads will be greatly appreciated.
AJZ
|
Similar Threads
- Exception in thread "main" java.lang.NoClassDefFoundError: Invaders Error (Java)
- Error running Java (Java)
- Java Applets (Java)
- Help Java Error "Java not found" (HTML and CSS)
- Error message 550 when sending emails (Web Browsers)
- JAVA help ACTIONLISTENERS (Java)
- Error trying to run java application (Java)
- E-Mail error Message (Web Browsers)
Other Threads in the Java Forum
- Previous Thread: MS Access database and java
- Next Thread: Learning Java Quick
| Thread Tools | Search this Thread |
Latest Java Posts
- Today's Posts
- Unanswered Threads
Related Forum Features
Tag cloud for Java
actionlistener android api apple applet application apps arguments array arrays automation balls binary bluetooth card chat class classes client code component consumer database draw eclipse ee error event exception fractal free game gameprogramming gis givemetehcodez graphics gui html ide image input integer j2me j2seprojects java javaprojects jmf jni jpanel julia jvm key linux list loop machine map method methods migrate mobile mobiledevelopmentcreatejar myaggfun netbeans newbie nextline nls notdisplaying number oracle output print problem program programming project recursion recursive scanner screen security server set size sms socket sort spamblocker sql sqlite string sun swing terminal test threads time tree trolltech windows
