Le 30/04/2019 à 11:51, Julien TEHERY a écrit : > Hi there, > > I'm actually importing ldap users into a Samba4 AD with succes but > > On the source ldap, connection is made through the 389 port and 636 > port on the destination (localhost). > In order to make it work in fully ldaps (source and destination, do > have I to import remote cert into java keystore? > > Because actually, here is what i get when i try to connect to source > ldap through 636: > > avr. 30 11:46:38 - ERROR - > org.lsc.exception.LscConfigurationException: Configuration exception: > javax.naming.CommunicationException: simple bind failed: X.X.X.X:636 > [Root exception is javax.net.ssl.SSLHandshakeException: > java.security.cert.CertificateException: No subject alternative names > present]
You should just import the CA certificate (or the server certificate if it is self signed). See https://lsc-project.org/documentation/howto/ssltls#trusting_the_certificate -- Clément Oudot | Identity Solutions Manager [email protected] Worteks | https://www.worteks.com _______________________________________________________________ Ldap Synchronization Connector (LSC) - http://lsc-project.org lsc-users mailing list [email protected] https://lists.lsc-project.org/cgi-bin/mailman/listinfo/lsc-users
