Describes environment configuration (JAVA + Valuemation) to be possible to use secure SSL protocol in LDAP communication. If SSL communication is not used, all information are sent as plain text via network, including password during authentication. SSL must be allowed on target JNDI server - contact your administrator if you are not sure. LDAPS by default uses port 636 instead of 389 reserved for standard LDAP. How to configure the environment
Note: by default "cacerts" file is protected with the password "changeit" 4. Inform JVM where certificates are stored Be sure, that JAVA has access and uses correct "cacerts" file. To be sure, you could start Valuemation with optional environment property -Djavax.net.ssl.trustStore=JAVA.HOME\lib\security\cacerts Troubleshooting Exception 1 javax.naming.CommunicationException: simple bind failed: win2000as-test:636 [Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake] SSL communication is not available for target JNDI server. Exception 2 javax.naming.CommunicationException: win2000as-test:636 [Root exception is java.net.ConnectException: Connection refused: connect] Communication over port 636 is not available for target JNDI server. Exception 3 javax.naming.CommunicationException: simple bind failed: win2000as-test:636 [Root exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found] You don't have installed correct certificate or "cacerts" file is not correctly located. | |||||