November 17, 2018 at 9:03 am #23879
I have installed OpenDJ 3.5.3 version via shell script and it installed without any issues. But after server starting, the status command gives the below error.
[srinath@localhost bin]$ ./status >>>> Specify OpenDJ LDAP connection parameters Administrator user bind DN [cn=Directory Manager]: Password for user 'cn=Directory Manager': Error reading configuration. Details: javax.naming.CommunicationException: simple bind failed: 0.0.0.0:4444 [Root exception is javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative names present]
Shell script code :
[srinath@localhost forgerock]$ cat opendj-install.sh #!/bin/sh #Install opendj via shell script echo "Installing OpenDJ via shell script" /data/forgerock/opendj/setup -n -i --propertiesFilePath /data/forgerock/opendj.properties --acceptLicense echo "Installation is completed" /data/forgerock/opendj/bin/start-ds tail -f /data/forgerock/opendj/logs/server.out
Here is the properties file details:
[srinath@localhost forgerock]$ cat opendj.properties hostname=opendj.example.com ldapPort=1389 generateSelfSignedCertficiate=true #no-prompt=true #enableStartTLS = true #ldapsPort = 1636 jmxPort=1689 adminConnectorPort=4444 rootUserDN=cn=Directory Manager rootUserPassword=local@DJ baseDN=dc=example,dc=com skipPortCheck=true doNotStart=true #usePkcs11Keystore = true #keyStorePassword = password
Env details :
openjdk version “1.8.0_191”
Red Hat Enterprise Linux Server release 7.6 (Maipo)
Any help on this would be appreciated.
SrinathNovember 17, 2018 at 3:18 pm #23880LudoModerator
This is most likely a mismatch between the hostname used at setup (
opendj.example.com) and the address where the status command connects to:
0.0.0.0. Java 8 update 191 has added checks for hosts and certificates in all SSL connections establishments.November 18, 2018 at 6:31 am #23885
Thanks for the reply @ludo.
Could you please suggest where I need to set correct hostname where java 8 update 191 has added.
I have set the FQDN in /etc/hosts as 127.0.0.1 opendj.example.com
SrinathNovember 18, 2018 at 6:53 am #23886
I have tried manual installation also but no luck. I can see the same error when try to check the status.
SrinathNovember 23, 2018 at 5:46 am #23950
It works fine when re-installed java with 1.8.0_131 version.November 26, 2018 at 9:47 am #23976Rob MatthewsParticipant
Sounds like you’ve hit a problem mentioned in the Java _181 release notes – https://www.oracle.com/technetwork/java/javase/8all-relnotes-2226344.html#R180_181 look for the mention of “improve LDAP Support”.
There is a kb article on it if you have access – https://backstage.forgerock.com/knowledge/kb/article/a74638591November 26, 2018 at 1:04 pm #23977
You must be logged in to reply to this topic.