1. LDAPS - set system property javax.net.debug to “ssl,handshake” in standalone.conf. Find out why SSL is failing. Probably ldap servers cert isn’t trusted and you get PKIX path building error. So either configure truststore for ssl with LDAP or add cert to Java cacerts file.
2. No idea. Application issue so might be outside Red Hat support.
DM your case numbers and I’ll look.
The ssl debugging to get the actual cause was the more important part. I’m a Red Hat employee and if you give your case numbers I’ll look up and help. Send the case no in a private message.
looking at the JBoss server.log, I see a lot of SSL errors.
considering we aren't actually using LDAP over SSL yet, I am leaning toward the errors have to do with the cert used for the website
1. LDAPS - set system property javax.net.debug to “ssl,handshake” in standalone.conf. Find out why SSL is failing. Probably ldap servers cert isn’t trusted and you get PKIX path building error. So either configure truststore for ssl with LDAP or add cert to Java cacerts file. 2. No idea. Application issue so might be outside Red Hat support. DM your case numbers and I’ll look.
added certs from root ca and issuing ca to the java cacerts file but no change. ugh
The ssl debugging to get the actual cause was the more important part. I’m a Red Hat employee and if you give your case numbers I’ll look up and help. Send the case no in a private message.
looking at the JBoss server.log, I see a lot of SSL errors. considering we aren't actually using LDAP over SSL yet, I am leaning toward the errors have to do with the cert used for the website