Hi,

Previously we were running Aris business server version 7.1 with SSL LDAP integration and things were working fine. Recently we have upgraded the Aris business server and architect to version 7.2. After the upgrade, the SSL LDAP login and import ldap users were not able to work anymore. There is no problem with the LDAP connection when I switch the LDAP to non-SSL.

I have enabled the LDAP logging and from the integration log, I was able to see that the SSL LDAP connection was established successfully. But soon after that it will hit a SSL Socket exception. I have pasted the full error message is below. Appreciate if anyone can provide me with a clue in what has gone wrong. Thanks!

 

2012-09-11T09:14:21,789  searching ldap with filter: (&(cn=xyz*)(&(objectClass=user)(memberOf=CN=XXX,OU=YYY,DC=aa,DC=bb,DC=cc,DC=dd)))

com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.find



2012-09-11T09:14:21,789  try connect to ldaps://ldap.xx.yy:636 (CN=ADM,OU=ADM,DC=aa,DC=bb,DC=cc,DC=dd)

com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.connectAs



2012-09-11T09:14:22,8  connect successfull!

com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.connectAs



2012-09-11T09:14:22,523  exception

com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPSearchExecutor.search

javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: simple bind failed: AAADnsZones.xx.yy:636 [Root exception is java.net.SocketException: Connection reset]]

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:224)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:362)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:362)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMore(LdapNamingEnumeration.java:171)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.AFilterDirectorySearch.search(Unknown Source)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPSearchExecutor.search(Unknown Source)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.search(Unknown Source)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.find(Unknown Source)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.ILDAPUserBaseHandlerImpl.browseLDAP(Unknown Source)

    at com.idsscheer.aris.server.arisldap.implementation.ldap.ILDAPUserHandlerImpl.searchForName(Unknown Source)

    at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator$20.getObjects(Unknown Source)

    at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator.searchExternalObjects(Unknown Source)

    at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator.searchExternalUser(Unknown Source)

    at com.idsscheer.aris.server.tl.webuseradministrator.AWebUserAdministratorComponent.searchLDAPUser(Unknown Source)

    at com.idsscheer.aris.cltech.common.core.webuseradministrator.IWebUserAdministratorDelegate.searchLDAPUser(Unknown Source)

    at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorServant.searchLDAPUser(Unknown Source)

    at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOATie.searchLDAPUser(Unknown Source)

    at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOA._OB_op_searchLDAPUser(Unknown Source)

    at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOA._invoke(Unknown Source)

    at com.ooc.OBPortableServer.ServantDispatcher.dispatch(Unknown Source)

    at com.ooc.OBPortableServer.POA_impl._OB_dispatch(Unknown Source)

    at com.ooc.OB.DispatchRequest_impl.invoke(Unknown Source)

    at com.ooc.OB.ThreadPool$Dispatcher.run(Unknown Source)

Caused by: javax.naming.CommunicationException: simple bind failed: ForestDnsZones.stf.nus.edu.sg:636 [Root exception is java.net.SocketException: Connection reset]

    at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:74)

    at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:132)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:339)

    at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)

    ... 24 more

Caused by: java.net.SocketException: Connection reset

    at java.net.SocketInputStream.read(SocketInputStream.java:168)

    at com.sun.net.ssl.internal.ssl.InputRecord.readFully(InputRecord.java:293)

    at com.sun.net.ssl.internal.ssl.InputRecord.read(InputRecord.java:331)

    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:798)

    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1138)

    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:632)

    at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)

    at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)

    at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)

    at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:396)

    at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:334)

    at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:192)

    at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2694)

    at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:293)

    at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)

    at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:134)

    at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:35)

    at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:584)

    at javax.naming.spi.NamingManager.processURL(NamingManager.java:364)

    at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:344)

    at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:316)

    at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:93)

    ... 27 more

 or register to reply.

Notify Moderator