By: Matthew Ouille user 09 May 2016 at 10:35 a.m. CDT

2 Responses

``` [09/May/2016:15:30:25 +0000] CONNECT conn=1140 from=54.208.84.215:39061 to=45.33.15.53:1636 protocol=LDAPS [09/May/2016:15:30:25 +0000] DISCONNECT conn=1140 reason="I/O Error" msg="An IO error occurred while reading a request from the client: javax.net.ssl.SSLException: Received fatal alert: certificate_unknown" ``` Whenever I try to point a LDAP enabled application at the LDAP server it seems to give this message. Does anyone have any ideas? I can connect fine through ApacheDS on 1636 and on the OpenDJ admin. Let me know if you guys think of something.

U1404

closed

By Matthew Ouille user 09 May 2016 at 10:52 a.m. CDT

Copy

I actually just found out that the requestor only accepts valid certificates so that is likely why. Can anyone confirm that this kind of error would be present due to a self-signed certificate being used when one that's authenticated is requested?

By Michael Schwartz Account Admin 09 May 2016 at 11:05 a.m. CDT

Copy

Of course one trick is to make sure your LDAP client can "Trust All"... otherwise, you may need to import the self-signed certificate for the ldap server into the truststore for your client. OpenDJ generates self signed certificates during installation and stores them in /opt/opendj/config if I'm remembering right.

You need to Login in order to post an answer

OpenDJ Connection Closing

By: Matthew Ouille user 09 May 2016 at 10:35 a.m. CDT

Answers

By Matthew Ouille user 09 May 2016 at 10:52 a.m. CDT

By Michael Schwartz Account Admin 09 May 2016 at 11:05 a.m. CDT

Post an answer