We recently updated to Java 1.8.0-oracle-184.108.40.206.x86_64 and after that we are unable to connect to LDAB. this is something related to the
mprove LDAP support
Endpoint identification has been enabled on LDAPS connections.
To improve the robustness of LDAPS (secure LDAP over TLS ) connections, endpoint identification algorithms have been enabled by default.
Note that there may be situations where some applications that were previously able to successfully connect to an LDAPS server may no longer be able to do so. Such applications may, if they deem appropriate, disable endpoint identification using a new system property:com.sun.jndi.ldap.object.disableEndpointIdentification.
Define this system property (or set it to true) to disable endpoint identification algorithms.
Please advise what has to be done from confluence server end.
we are using data centre with 4 node. version 5.10.2
Before jumping to disable the new endpoint identification feature, we need to check if you have actually imported all the SSL certificates into your new Java truststore: <JAVA_HOME>/jre/lib/security/cacerts ?
New JDK will come with a default truststore file that might not have the SSL certificate chain used by your LDAP server.
Could Post a snippit of the errors you see while connecting your JIRA to LDAP ?
Two vulnerabilities have been published for Confluence Server and Data Center recently: March 20, 2019 CVE-2019-3395 / CVE-2019-3396 April 17, 2019 CVE-2019-3398 The goal of this article is...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events