It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

SSL handshake exception with LDAP Edited

We recently updated to Java 1.8.0-oracle-1.8.0.181.x86_64 and after that we are unable to connect to LDAB. this is something related to the 

https://www.oracle.com/technetwork/java/javase/8u181-relnotes-4479407.html. 

mprove LDAP support 

Endpoint identification has been enabled on LDAPS connections.

To improve the robustness of LDAPS (secure LDAP over TLS ) connections, endpoint identification algorithms have been enabled by default.

Note that there may be situations where some applications that were previously able to successfully connect to an LDAPS server may no longer be able to do so. Such applications may, if they deem appropriate, disable endpoint identification using a new system property:com.sun.jndi.ldap.object.disableEndpointIdentification.

Define this system property (or set it to true) to disable endpoint identification algorithms.

 

 

Please advise what has to be done from confluence server end. 

we are using data centre with 4 node. version 5.10.2

1 answer

0 votes
Sherif Abdelfattah Atlassian Team Aug 24, 2018

Hello Parthiban,

Before jumping to disable the new endpoint identification feature, we need to check if you have actually imported all the SSL certificates into your new Java truststore: <JAVA_HOME>/jre/lib/security/cacerts ?

New JDK will come with a default truststore file that might not have the SSL certificate chain used by your LDAP server.

Could Post a snippit of the errors you see while connecting your JIRA to LDAP ?

 

Cheers,

Sherif

Tobias Anstett (K15t) Community Leader Sep 04, 2018

Hi,

there is a good documentation on this provided by Atlassian - https://confluence.atlassian.com/doc/configuring-an-ssl-connection-to-active-directory-229838458.html

Best, Tobias

Suggest an answer

Log in or Sign up to answer
This widget could not be displayed.
This widget could not be displayed.
Community showcase
Published in Confluence

Confluence CVEs and common questions

Two vulnerabilities have been published for Confluence Server and Data Center recently: March 20, 2019 CVE-2019-3395 / CVE-2019-3396 April 17, 2019 CVE-2019-3398 The goal of this article is...

862 views 0 19
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you