[midPoint] Fwd: AD configuration with LDAP Connector, ssl issue

Dilek Gider dilek.gider at basistek.com
Mon Apr 24 14:26:43 CEST 2017


Hi Again,

Is there anybody to help me please.. Details are below.

---------- Forwarded message ----------
From: Dilek Gider <dilek.gider at basistek.com>
Date: Thu, Apr 20, 2017 at 4:20 PM
Subject: AD configuration with LDAP Connector, ssl issue
To: midPoint General Discussion <midpoint at lists.evolveum.com>


Hi ,

I have resource to AD from midpoint, with LDAP Connector. You can find
resource.xml as attchment. I couldn't connect this resource with LDAP via
SSL. I followed

https://wiki.evolveum.com/display/midPoint/Keystore+Configuration

link, added Tomcat java options but it doens't work. Also I added logs
about this resource, error logs.

I wrote java jar to connect AD via ssl and execute it from the same
location with my java connector, it succeeded. But  in midpoint it could
not communicate with AD via SSL. Without SSL, it is communicating with AD
from LDAPConnector.

I have java 8_101, tomcat 8.5.
I have certificate as "cer" file, I imported to both java cacerts and
midpoint keystore. and it is listed with my alias:
Keystore type: JCEKS
Keystore provider: SunJCE

Your keystore contains 3 entries

nlight, Mar 21, 2017, trustedCertEntry,
Certificate fingerprint (SHA1): XXXXXXXXX
default, Nov 30, 2016, SecretKeyEntry,
tirsantest.local, Apr 19, 2017, trustedCertEntry,
Certificate fingerprint (SHA1): XXXXXXXXXXXX

Could you help me? I am working on this problem for two weeks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170424/6741d10b/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ADResourceXML.xml
Type: text/xml
Size: 345368 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170424/6741d10b/attachment.xml>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: idm.log
Type: application/octet-stream
Size: 552270 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170424/6741d10b/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: tomcat8-stderr.2017-04-20.log
Type: application/octet-stream
Size: 19601 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170424/6741d10b/attachment-0001.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: tomcat8-stdout.2017-04-20.log
Type: application/octet-stream
Size: 18618 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170424/6741d10b/attachment-0002.obj>


More information about the midPoint mailing list