SSL handshake exception with LDAP Edited

We recently updated to Java 1.8.0-oracle- and after that we are unable to connect to LDAB. this is something related to the 

mprove LDAP support 

Endpoint identification has been enabled on LDAPS connections.

To improve the robustness of LDAPS (secure LDAP over TLS ) connections, endpoint identification algorithms have been enabled by default.

Note that there may be situations where some applications that were previously able to successfully connect to an LDAPS server may no longer be able to do so. Such applications may, if they deem appropriate, disable endpoint identification using a new system property:com.sun.jndi.ldap.object.disableEndpointIdentification.

Define this system property (or set it to true) to disable endpoint identification algorithms.



Please advise what has to be done from confluence server end. 

we are using data centre with 4 node. version 5.10.2

1 answer

0 votes

Hello Parthiban,

Before jumping to disable the new endpoint identification feature, we need to check if you have actually imported all the SSL certificates into your new Java truststore: <JAVA_HOME>/jre/lib/security/cacerts ?

New JDK will come with a default truststore file that might not have the SSL certificate chain used by your LDAP server.

Could Post a snippit of the errors you see while connecting your JIRA to LDAP ?





there is a good documentation on this provided by Atlassian -

Best, Tobias

Suggest an answer

Log in or Sign up to answer
Community showcase
Published Mar 12, 2019 in Confluence

Confluence Admin Certification now $150 for Community Members

More and more people are building their careers with Atlassian, and we want you to be at the front of this wave! Important Dates Start the Certification Prep Course by 2 April 2019 Take your e...

1,132 views 2 13
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you