Microsoft Active Directory Integration issue with OBIEE12c on Secure Port (Port# 636) — Oracle Analytics

Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

Microsoft Active Directory Integration issue with OBIEE12c on Secure Port (Port# 636)

Received Response
233
Views
23
Comments
3614436
3614436 Rank 3 - Community Apprentice
edited Aug 13, 2024 5:50PM in Oracle Analytics Cloud and Server

Hi Guru's,

I have a requirement in y project to configure microsoft active derectory with OBIEE12c for the user authentication. So, All the AD users should be able to login OBIEE analytics page.

Existing microsoft active directory using port 636 ( SSL).

I am getting following error after saving details under Domain Structure --< Domain name --> Security Realms --> Providers --> Provider Specific.

[Security:090834]No LDAP connection could be established. ldaps://hostname:636 Cannot connect to the LDAP server

Could you please let me know how to proceed in that. Please share some relivant document specific to configuring on SSL port ( not on 389).

Best Regards,

Ritesh

«13

Answers

  • GermanA-Oracle
    GermanA-Oracle Rank 3 - Community Apprentice

    If you are *really* using "hostname:636" then change hostname by the name of your AD.

    To connect using the SSL port make sure to follow the instructions on the Security Guide, Configuring SSL when Using Multiple Authenticators.

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Thanks a lot.

    As per security policy I can not share the hostname.

    I am using the corret host name which got from AD team. Thanks for sharing the link.

    I will go through and update you shortly.

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Hi,

    Can anyone help in that? We are suppose to go for UAT in this week.

    Needed help from the people who has already worked in such scenario.

  • Michael Verzijl
    Michael Verzijl Rank 6 - Analytics Lead

    What error are you seeing in the domain log file on the server? General SSLEngine problem?

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Thanks

    <The LDAP authentication provider named failed to make a connection to LDAP server at ldaps://hostname:636, the error cause is: General SSLEngine problem.>

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Thanks for your time.

    Following error I can see in Domain log :

    <The LDAP authentication provider named failed to make a connection to LDAP server at ldaps://hostname:636, the error cause is: General SSLEngine problem.>

  • Michael Verzijl
    Michael Verzijl Rank 6 - Analytics Lead

    Did you follow these steps from the documentation?

    https://docs.oracle.com/middleware/1221/wls/SECMG/ldap_atn.htm#SECMG539

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Did the same today morning but not able to view the AD users under user and group tab.

  • Michael Verzijl
    Michael Verzijl Rank 6 - Analytics Lead

    Ok. You did reboot the weblogic services after you applied these? The General SSLEngine problem clearly states something is wrong with your certificates.

  • 3614436
    3614436 Rank 3 - Community Apprentice

    Yes, i have bounce the server. Admin server went fine but did not see the AD users. However, I have observed after server bounce managed server( bi_server1) and other services was in UNKNOWN status  with General SSLengine issue.

    I have reverted back to demo one. and bounce the services again and all services started successfully.

    Best Regards,