on 10-16-2017 10:07 AM
Hello,
we wanted to config LDAP for SSL but it didn't worked.
We get the Error in CMC
Error: "The secLdap plugin failed to connect to the specified hosts. The hosts may be down, the server certificate may have been rejected, or the hosts may be configured for mutual authentication" occurs when configuring LDAP SSL through CMC - BI 4.2 SP4
The SAP BO CMS Log Shows us following:
"Failure while binding to LDAP server" "Re-trying LdapBindToServer for host:" "SecLdap Error: invalid parameters in LdapVerifyParameters()""LdapVerifyParameters: caught exception verifying hosts and credentials." "LDAP: verifying parameters failed. Exception caught." "CInfoObjectSubsystem::Commit: Ending commit with 1 errors."
The nearest sap note which i found is 2499693.
We openend an call at sap Support, but still waiting for answears.
Does anybody know about this issue and can Support us?
Systemconfig:
SAP BO 4.2 SP4 Plattform (Cluster: Active Active)
AIX 7.1 (Unix)
Best regards
Sebastian Klawonn
Hi Tim, thanks for reply:
we are using IBM Security Directory Server V6.4 FP 12.
We wanted to use TLS 1.2 with that cipher which fits to SAP BO 4.2 SP 4. But as we looked up, we are neither getting an handshake..
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Is that IBM Tivoli? We had an issue with tivoli and it was fixed in patch 3 I believe, but Im not sure if this is the note (it's vague). https://launchpad.support.sap.com/#/notes/2500240
The engineer that worked the issue isn't here I'll try to confirm with him that's the fix.
Hi Tim,
i implemented the SP3 for SAP BO 4.2 SP4 and it workend on Windows.
So I am doing that on Unix env to. I will answear if it will work....
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
The LDAP SDK has been changed in 4.2 SP4 so any existing configurations using SSL will need to be reconfigured.
What LDAP server (and patch level) are you running? What crypto cipher version are you attempting to use for SSL/TLS?
This KBA will provide some info. https://apps.support.sap.com/sap/support/knowledge/preview/en/2388488
-Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.