directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Steven Nguyen (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (DIRAPI-247) Could not connect to LDAP server over SSL
Date Thu, 03 Sep 2015 10:18:45 GMT

    [ https://issues.apache.org/jira/browse/DIRAPI-247?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14728820#comment-14728820
] 

Steven Nguyen commented on DIRAPI-247:
--------------------------------------

Hi Team,

I have just found the root cause. The problem is that the TLS version that my JDK supports.
I'm running the API on Java 1.6 which supports SSLv3 and TLSv1.0 while the server send the
TLSv1.2.
By limiting the enabled protocols with this line of code: connConfig.setEnabledProtocols("SSLv3",
"TLSv1"), I could make connection successfully to AD server.

Please close the issue.

Best Regards,

Steven Nguyen

> Could not connect to LDAP server over SSL
> -----------------------------------------
>
>                 Key: DIRAPI-247
>                 URL: https://issues.apache.org/jira/browse/DIRAPI-247
>             Project: Directory Client API
>          Issue Type: Bug
>    Affects Versions: 1.0.0-M31
>            Reporter: Steven Nguyen
>            Priority: Minor
>
> Hi Team,
> I need to connect to AD server through SSL using LDAP API. I configured SSL on AD server
and I could connect to it using Directory Studio.
> However, when I create a LdapNetworkConnection and tried to open connection to AD server
through SSL, I got "Unable to connect" error. No more stack trace message.
> My code is simple as below:
> LdapConnectionConfig connConfig = new LdapConnectionConfig();
> connConfig.setLdapHost("<AD_host_name>");
> connConfig.setLdapPort(636);
> connConfig.setUseSsl(true);
> connConfig.setUseTls(true);
> connConfig.setSslProtocol("SSL");
> connConfig.setTimeout(10 * 1000);
> LdapNetworkConnection conn = new LdapNetworkConnection(connConfig);
> // error after calling connect() method
> conn.connect();
> Could you please check if I'm missing something?
> Thanks and Best Regards,
> Steven Nguyen



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message