1 Reply Latest reply: Nov 15, 2012 2:24 AM by NaveenThoddil RSS

    AD Password Sync connector 9.1.1 With OIM 11g R2 - ERROR OVER SSL

    NaveenThoddil
      I have set up AD password sync with from AD to OIM 11G R2

      The password syncs from AD to OIM 11G R2 on non ssl port 389.

      But if fails on SSL Port 636.

      Errors in OIMMain.Log:_

      Debug [10/11/2012 10:49:34 AM] Inside ConnectToADSI
      Debug [10/11/2012 10:49:34 AM]
      ldap_connect failed with
      Debug [10/11/2012 10:49:34 AM] Server Down
      Debug [10/11/2012 10:49:34 AM]


      Steps Carried Out thus far:_

      AD is up and running.

      Configured AD Password Sync Connector on 636 and selected ssl.

      Created Certificate on OIM host, configured custom identity key store on weblogic. Restarted Weblogic.

      Imported Certificate to AD. After this, restarted the AD

      I can Telnet port 636 from OIM Box and also connect to AD through LDAP Browser on 636 and view OU and CN, so this seems fine.

      Provisioning from OIM through Connector Server to AD works over SSL and this works fine.

      Help would be appreciated.

      Many Thanks
        • 1. Re: AD Password Sync connector 9.1.1 With OIM 11g R2 - ERROR OVER SSL
          NaveenThoddil
          This question is now been fixed.

          Instead of explicitly stating 636 for SSL,

          Use the same port 389 for ssl and also configured oim port to be 140001 which is the ssl port for oim in the configuration of OIM Password Sync.

          Export Certificates from AD to java security keystore and to weblogic keystore

          Export .pem certificate created on OIM host machine to AD.

          Restart weblogic, oim and AD

          Everything would work fine.

          For all the other information, refer to doc.


          Thanks