Hi,
Previously we were running Aris business server version 7.1 with SSL LDAP integration and things were working fine. Recently we have upgraded the Aris business server and architect to version 7.2. After the upgrade, the SSL LDAP login and import ldap users were not able to work anymore. There is no problem with the LDAP connection when I switch the LDAP to non-SSL.
I have enabled the LDAP logging and from the integration log, I was able to see that the SSL LDAP connection was established successfully. But soon after that it will hit a SSL Socket exception. I have pasted the full error message is below. Appreciate if anyone can provide me with a clue in what has gone wrong. Thanks!
2012-09-11T09:14:21,789 searching ldap with filter: (&(cn=xyz*)(&(objectClass=user)(memberOf=CN=XXX,OU=YYY,DC=aa,DC=bb,DC=cc,DC=dd)))
com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.find
2012-09-11T09:14:21,789 try connect to ldaps://ldap.xx.yy:636 (CN=ADM,OU=ADM,DC=aa,DC=bb,DC=cc,DC=dd)
com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.connectAs
2012-09-11T09:14:22,8 connect successfull!
com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.connectAs
2012-09-11T09:14:22,523 exception
com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPSearchExecutor.search
javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: simple bind failed: AAADnsZones.xx.yy:636 [Root exception is java.net.SocketException: Connection reset]]
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:224)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:362)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:362)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMore(LdapNamingEnumeration.java:171)
at com.idsscheer.aris.server.arisldap.implementation.ldap.AFilterDirectorySearch.search(Unknown Source)
at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPSearchExecutor.search(Unknown Source)
at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.search(Unknown Source)
at com.idsscheer.aris.server.arisldap.implementation.ldap.ALDAPConnection.find(Unknown Source)
at com.idsscheer.aris.server.arisldap.implementation.ldap.ILDAPUserBaseHandlerImpl.browseLDAP(Unknown Source)
at com.idsscheer.aris.server.arisldap.implementation.ldap.ILDAPUserHandlerImpl.searchForName(Unknown Source)
at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator$20.getObjects(Unknown Source)
at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator.searchExternalObjects(Unknown Source)
at com.idsscheer.aris.server.tl.webuseradministrator.AArisUserAdministrator.searchExternalUser(Unknown Source)
at com.idsscheer.aris.server.tl.webuseradministrator.AWebUserAdministratorComponent.searchLDAPUser(Unknown Source)
at com.idsscheer.aris.cltech.common.core.webuseradministrator.IWebUserAdministratorDelegate.searchLDAPUser(Unknown Source)
at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorServant.searchLDAPUser(Unknown Source)
at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOATie.searchLDAPUser(Unknown Source)
at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOA._OB_op_searchLDAPUser(Unknown Source)
at com.idsscheer.aris.cltech.common.corba.webuseradministrator.IWebUserAdministratorPOA._invoke(Unknown Source)
at com.ooc.OBPortableServer.ServantDispatcher.dispatch(Unknown Source)
at com.ooc.OBPortableServer.POA_impl._OB_dispatch(Unknown Source)
at com.ooc.OB.DispatchRequest_impl.invoke(Unknown Source)
at com.ooc.OB.ThreadPool$Dispatcher.run(Unknown Source)
Caused by: javax.naming.CommunicationException: simple bind failed: ForestDnsZones.stf.nus.edu.sg:636 [Root exception is java.net.SocketException: Connection reset]
at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:74)
at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:132)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreReferrals(LdapNamingEnumeration.java:339)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:208)
... 24 more
Caused by: java.net.SocketException: Connection reset
at java.net.SocketInputStream.read(SocketInputStream.java:168)
at com.sun.net.ssl.internal.ssl.InputRecord.readFully(InputRecord.java:293)
at com.sun.net.ssl.internal.ssl.InputRecord.read(InputRecord.java:331)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:798)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1138)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:632)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(AppOutputStream.java:59)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:396)
at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:334)
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:192)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2694)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:293)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:134)
at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:35)
at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:584)
at javax.naming.spi.NamingManager.processURL(NamingManager.java:364)
at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:344)
at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:316)
at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:93)
... 27 more