Due to a typo I’ve configured the wrong port for the LDAPS connection handler on my OUD instance. But this is actually not a problem and can be corrected easily. First let’s verify the current settings of the LDAPS connection handler.<\/p>\n
\r\noracle@urania:~\/ [oud_eus] dsconfig -h localhost -p 4444 -D "cn=Directory Manager" \\\r\n-j $ORACLE_HOME\/OUD\/config\/pwd.txt --trustAll --no-prompt \\\r\nget-connection-handler-prop --handler-name "LDAPS Connection Handler"\r\n\r\nProperty : Value(s)\r\n-----------------------:-------------------------------------------------------\r\nallow-ldap-v2 : true\r\nallow-start-tls : false\r\nallowed-client : -\r\ndenied-client : -\r\nenabled : true\r\nkeep-stats : true\r\nkey-manager-provider : JKS\r\nlisten-address : 0.0.0.0\r\nlisten-port : 1689\r\nssl-cert-nickname : -\r\nssl-cipher-suite : jvm, SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA,\r\n : SSL_DH_anon_EXPORT_WITH_RC4_40_MD5,\r\n : SSL_DH_anon_WITH_3DES_EDE_CBC_SHA,\r\n : SSL_DH_anon_WITH_DES_CBC_SHA,\r\n : SSL_DH_anon_WITH_RC4_128_MD5\r\nssl-client-auth-policy : optional\r\nssl-protocol : -\r\ntrust-manager-provider : JKS\r\nuse-ssl : true\r\n<\/pre>\nSet the new listen-port<\/em> to 1636 using dsconfig<\/em> for the LDAPS connection handler.<\/p>\n
\r\noracle@urania:~\/ [oud_eus] dsconfig -h localhost -p 4444 -D "cn=Directory Manager" \\\r\n-j $ORACLE_HOME\/OUD\/config\/pwd.txt --trustAll \\\r\nset-connection-handler-prop --handler-name "LDAPS Connection Handler" \\\r\n--set listen-port:1636 --no-prompt \r\n<\/pre>\nUnfortunately, a restart of the OUD instance is required to use the new settings. This can be done using stop-ds<\/em>. For better readability I left out a large part of the output in the following example.<\/p>\n
\r\noracle@urania:~\/ [oud_eus] stop-ds --restart\r\nStopping Server...\r\n\r\n[12\/Jul\/2016:23:15:09 +0200] category=CORE severity=NOTICE msgID=458887 msg=The Directory Server has started successfully\r\n[12\/Jul\/2016:23:15:09 +0200] category=CORE severity=NOTICE msgID=458891 msg=The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerStarted, alert ID 458887): The Directory Server has started successfully\r\n<\/pre>\nUse again dsconfig<\/em> to get the new settings of the LDAPS connection handler. As you can see the listen-port<\/em> is now set to 1636.<\/p>\n
\r\noracle@urania:~\/ [oud_eus] dsconfig -h localhost -p 4444 -D "cn=Directory Manager" \\\r\n-j $ORACLE_HOME\/OUD\/config\/pwd.txt --trustAll --no-prompt \\\r\nget-connection-handler-prop --handler-name "LDAPS Connection Handler"\r\n\r\nProperty : Value(s)\r\n-----------------------:-------------------------------------------------------\r\nallow-ldap-v2 : true\r\nallow-start-tls : false\r\nallowed-client : -\r\ndenied-client : -\r\nenabled : true\r\nkeep-stats : true\r\nkey-manager-provider : JKS\r\nlisten-address : 0.0.0.0\r\nlisten-port : 1636\r\nssl-cert-nickname : -\r\nssl-cipher-suite : jvm, SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA,\r\n : SSL_DH_anon_EXPORT_WITH_RC4_40_MD5,\r\n : SSL_DH_anon_WITH_3DES_EDE_CBC_SHA,\r\n : SSL_DH_anon_WITH_DES_CBC_SHA,\r\n : SSL_DH_anon_WITH_RC4_128_MD5\r\nssl-client-auth-policy : optional\r\nssl-protocol : -\r\ntrust-manager-provider : JKS\r\nuse-ssl : true\r\n<\/pre>\nOr just do a ldapsearch<\/em> against the new LDAPS port.<\/p>\n
\r\noracle@urania:~\/ [oud_eus] ldapsearch -h localhost -p 1636 -D "cn=Directory Manager" \\\r\n--useSSL --trustAll -j $ORACLE_HOME\/OUD\/config\/pwd.txt \\\r\n-s base -b 'dc=postgasse,dc=org' 'objectclass=*'\r\n\r\ndn: dc=postgasse,dc=org\r\norclversion: 90400\r\ndc: postgasse\r\norclsubscriberfullname: postgasse\r\nobjectclass: top\r\nobjectclass: orclSubscriber\r\nobjectclass: domain\r\n<\/pre>\nOf course it is possible with this method to change other parameter of the different connection handler.<\/p>\n
Information on dsconfig<\/em> can be found in the Oracle\u00ae Fusion Middleware Administering Oracle Unified Directory 11g Release 2 (11.1.2) A.2.4 dsconfig<\/a>. See more OraDBA sticky notes<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"
Due to a typo I’ve configured the wrong port for the LDAPS connection handler on my OUD instance. But this is actually not a problem and can be corrected easily. First let’s verify the current settings of the LDAPS connection handler. oracle@urania:~\/ [oud_eus] dsconfig -h localhost -p 4444 -D "cn=Directory Manager" \\ -j $ORACLE_HOME\/OUD\/config\/pwd.txt –trustAll […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"Change LDAPS Port for #OUD #trivadis","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[142],"tags":[156,111],"class_list":["post-2153","post","type-post","status-publish","format-standard","hentry","category-oud","tag-sticky-notes","tag-tvdsecexpert"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p1aErb-yJ","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":2943,"url":"https:\/\/www.oradba.ch\/wordpress\/2019\/03\/configure-oracle-eusm-to-use-ldaps\/","url_meta":{"origin":2153,"position":0},"title":"Configure Oracle EUSM to use LDAPS","author":"Stefan","date":"1. March 2019","format":false,"excerpt":"With the introduction of Oracle 18c, [cci]eusm[\/cci] is officially designated as an Enterprise User Security Utility. It is now officially documented of the Enterprise User Security Administrator's Guide. Before we had to be content with the somewhat sparse MOS note 1085065.1 EUSM, Command Line Tool For EUS Administration and Some\u2026","rel":"","context":"In "18c"","block_context":{"text":"18c","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oracle-database\/18c\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2761,"url":"https:\/\/www.oradba.ch\/wordpress\/2018\/08\/oracle-unified-directory-sslhandshakeexception-with-java-1-8-0_181\/","url_meta":{"origin":2153,"position":1},"title":"Oracle Unified Directory SSLHandshakeException with Java 1.8.0_181","author":"Stefan","date":"23. August 2018","format":false,"excerpt":"A couple of days ago I did update my Oracle Unified Directory Docker images with the latest bundle patch for OUD as well the latest java version. With the new Docker images I was about to reproduce a use case from a customer. Everything actually worked at first glance, but\u2026","rel":"","context":"In "Oracle Unified Directory"","block_context":{"text":"Oracle Unified Directory","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oud\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":3123,"url":"https:\/\/www.oradba.ch\/wordpress\/2019\/07\/sql-developer-19-1-unable-to-use-connection-type-ldap-with-oud\/","url_meta":{"origin":2153,"position":2},"title":"SQL Developer 19.1 unable to use connection type ldap with OUD","author":"Stefan","date":"2. July 2019","format":false,"excerpt":"Due to a tip from a work colleague, I came across a changed behaviour of the latest SQL Developer release. It affects the connection type LDAP respectively the use of an LDAP directory for the database name resolution. After specifying one or more LDAP servers it should actually be possible\u2026","rel":"","context":"In "19c"","block_context":{"text":"19c","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oracle-database\/19c\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/Screenshot-2019-07-02-at-08.53.08-1024x281.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":2144,"url":"https:\/\/www.oradba.ch\/wordpress\/2016\/07\/change-default-java_home-for-oud-instance\/","url_meta":{"origin":2153,"position":3},"title":"Change default JAVA_HOME for OUD Instance","author":"Stefan","date":"12. July 2016","format":false,"excerpt":"I just had a situation where I had to change the JAVA_HOME for my Oracle Unified Directory (OUD) instance. Although this is quite simple, this blog post serves as my \"sticky note\". During the setup of my OUD instance I've set the wrong JAVA_HOME. I've used JDK 1.8 instead recommended\u2026","rel":"","context":"In "Oracle Unified Directory"","block_context":{"text":"Oracle Unified Directory","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oud\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2205,"url":"https:\/\/www.oradba.ch\/wordpress\/2016\/11\/environment-scripts-for-oud\/","url_meta":{"origin":2153,"position":4},"title":"Environment Scripts for OUD","author":"Stefan","date":"18. November 2016","format":false,"excerpt":"At Trivadis we do have the TVD-BasEnv\u2122 to standardizes and simplifies the handling of environments for Oracle database and application server landscapes. This inspired me to create something similar for Oracle Unified Directory environments. Although current versions of TVD-BasEnv\u2122 already support OUD and OID environment. I've had the situation, where\u2026","rel":"","context":"In "Oracle Unified Directory"","block_context":{"text":"Oracle Unified Directory","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oud\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":9217,"url":"https:\/\/www.oradba.ch\/wordpress\/2022\/03\/easy-replacement-of-tnsnames-ora-with-ldap-directory-server\/","url_meta":{"origin":2153,"position":5},"title":"Easy replacement of tnsnames.ora with LDAP Directory Server","author":"Stefan","date":"1. March 2022","format":false,"excerpt":"The tnsnames.ora is a configuration file for Oracle database respectively Oracle Net Service Names resolution. It contains network service names that are mapped to connection descriptors for the local naming method. With the help of tnsnames.ora Oracle clients respectively the users can easily access Oracle databases. The connection descriptors provides\u2026","rel":"","context":"In "19c"","block_context":{"text":"19c","link":"https:\/\/www.oradba.ch\/wordpress\/category\/oracle-database\/19c\/"},"img":{"alt_text":"Oracle Net Service Names","src":"https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/www.oradba.ch\/wordpress\/wp-content\/uploads\/OracleNamesLDAP_basic.png?resize=1400%2C800&ssl=1 4x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/posts\/2153","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/comments?post=2153"}],"version-history":[{"count":3,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/posts\/2153\/revisions"}],"predecessor-version":[{"id":2156,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/posts\/2153\/revisions\/2156"}],"wp:attachment":[{"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/media?parent=2153"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/categories?post=2153"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.oradba.ch\/wordpress\/wp-json\/wp\/v2\/tags?post=2153"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}