Jason Yu
asked on
How can I create a SSL certificate from windows 2003 domain controler
I have an Oracle OID server got synchronization problem with the active directory. I got the below message when I tried to bind the server:
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 6636 -D 'minx@minkagroup.net' -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a sinst_1/OI D/admin/oi d3wallet -P "h3r4kl3s"
Cannot connect to the LDAP server
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 636 -D 'minx@minkagroup.net' -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a sinst_1/OI D/admin/oi d3wallet -P "h3r4kl3s"
SSL handshake failed
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a sinst_1/OI D/admin/oi d3wallet -P "h3r4kl3s"
SSL handshake failed
[orcloid@deimos-11G oid1wallet]
Oracle Support verified it's the domain controller's problem, she asked me to export the certificate from domain controller and import it into the oid server, I have a certificate server setup on the domain controller by my predessor. How could I export the certificate from the server and finish importing. Do I need export a private key or public key?
Thanks.
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 6636 -D 'minx@minkagroup.net' -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a
Cannot connect to the LDAP server
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 636 -D 'minx@minkagroup.net' -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a
SSL handshake failed
[orcloid@deimos-11G oid1wallet]ldapbind -h saturn.minkagroup.net -p 636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a
SSL handshake failed
[orcloid@deimos-11G oid1wallet]
Oracle Support verified it's the domain controller's problem, she asked me to export the certificate from domain controller and import it into the oid server, I have a certificate server setup on the domain controller by my predessor. How could I export the certificate from the server and finish importing. Do I need export a private key or public key?
Thanks.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I successfully imported the certificate to the wallet. I tested the ldapbind to the first domain controller successfully.
[orcloid@deimos-11G oid3wallet]ldapbind -h saturn.minkagroup.net -p 636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a sinst_1/OI D/admin/oi d3wallet -P "h3r4kl3s"
bind successful
However, when I use the same command to test the virtual link on the load balancer, it erred out.
[orcloid@deimos-11G oid3wallet]ldapbind -h thebes.minkagroup.net -p 6636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a sinst_1/OI D/admin/oi d3wallet -P "h3r4kl3s"
SSL handshake failed
I am uploading the load balancer copy screen
[orcloid@deimos-11G oid3wallet]ldapbind -h saturn.minkagroup.net -p 636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a
bind successful
However, when I use the same command to test the virtual link on the load balancer, it erred out.
[orcloid@deimos-11G oid3wallet]ldapbind -h thebes.minkagroup.net -p 6636 -D "minx@minkagroup.net" -w .g0rg0n. -U 2 -W file://u2/oracle/oidware/a
SSL handshake failed
I am uploading the load balancer copy screen
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I got it resolved finally. It proved the certificate on the OID expired too, I have to renew the certificate on the OID too.
ASKER