Hello,

I want to create some Entitlements, with the Entilement Driver:

_My_enviroment:_
Two Linux Server (SLES10SP3 x64) with three instances of eDirectory
8.8.7 and IDM 4.0.1.
The iManager 2.7.5 is installed on an other Linux Server.

I've logged in on iManager as an Admin, selected
Role Base Entitlements ->Role Base Entitlements.
Select the Driverset -> New -> write the name -> klick on Next

_I_got_the_following_Error_Message:__
Unable to obtain an LDAP context. Possible causes: the LDAP server is
not running, or the LDAP server is for a tree other than the one
iManager
was originally set up for, and SSL has not been set up between the
iManager server and the LDAP server. Either start the LDAP server, or
set up SSL by importing a trusted certificate.

_The_LDAP_Trace_on_the_Server:_
11:24:43 317ED710 LDAP: New TLS connection 0x615c00 from
140.25.63.96:43410, monitor = 0x312e8710, index = 2
11:24:43 312E8710 LDAP: Monitor 0x312e8710 initiating TLS handshake on
connection 0x615c00
11:24:43 30CE2710 LDAP: (140.25.63.96:43410)(0x0000:0x00)
DoTLSHandshake on connection 0x615c00
11:24:43 30CE2710 LDAP: (140.25.63.96:43410)(0x0000:0x00) TLS accept
failure 1 on connection 0x615c00, setting err = -5875. Error stack:
error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate
unknown - SSL alert number 46
11:24:43 30CE2710 LDAP: (140.25.63.96:43410)(0x0000:0x00) TLS handshake
failed on connection 0x615c00, err = -5875
11:24:43 30CE2710 LDAP: BIO ctrl called with unknown cmd 7
11:24:43 30CE2710 LDAP: Server closing connection 0x615c00, socket
error = -5875
11:24:43 30CE2710 LDAP: Connection 0x615c00 closed
11:24:43 317ED710 LDAP: New TLS connection 0x615c00 from
140.25.63.96:43411, monitor = 0x312e8710, index = 2
11:24:43 312E8710 LDAP: Monitor 0x312e8710 initiating TLS handshake on
connection 0x615c00
11:24:43 316EC710 LDAP: (140.25.63.96:43411)(0x0000:0x00)
DoTLSHandshake on connection 0x615c00
11:24:43 316EC710 LDAP: (140.25.63.96:43411)(0x0000:0x00) TLS accept
failure 1 on connection 0x615c00, setting err = -5875. Error stack:
error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate
unknown - SSL alert number 46
11:24:43 316EC710 LDAP: (140.25.63.96:43411)(0x0000:0x00) TLS handshake
failed on connection 0x615c00, err = -5875
11:24:43 316EC710 LDAP: BIO ctrl called with unknown cmd 7
11:24:43 316EC710 LDAP: Server closing connection 0x615c00, socket
error = -5875
11:24:43 316EC710 LDAP: Connection 0x615c00 closed

I've imported (-/opt/novell/jdk1.6.0_31/jre/bin/keytool -import -alias
VAULT-CA -file cert.der -keystore .keystore-) the public certificate
(-cert.der-) of the ca into the
/var/opt/novell/novlwww/.keystore and restarted the tomcat, but it
doesn't work.

Does anybody have an idea, what to do ?
Greetings Arno


--
Dorenbusch
------------------------------------------------------------------------
Dorenbusch's Profile: https://forums.netiq.com/member.php?userid=2037
View this thread: https://forums.netiq.com/showthread.php?t=42643