StartTLS problem
Rastko Isajev
risajev at calliduscloud.com
Thu Feb 28 09:10:46 EST 2013
Hello,
I am configuring Shibboleth as and IdP to communicate with OpenDJ as and
IdP.
I am facing with problems because of StartTLS that is mandatory when
Shibboleth is calling LDAP connection handler. I have enabled StartTLS on
connection handler and assign keystore. And it is OK on that size.
Now when Shibboleth has a problem with it. I am not sure where to provide
keystore.jks for it ? Here are the errors :
14:50:46.533 - ERROR
[edu.vt.middleware.ldap.pool.DefaultLdapFactory:109] -*unabled to
connect to the ldap
*
javax.naming.CommunicationException:
sun.security.validator.ValidatorException:* PKIX path building
failed:*sun.security.provider.certpath.SunCertPathBuilderException:
*unable to find valid certification path to requested target*
at
edu.vt.middleware.ldap.handler.TlsConnectionHandler.startTls(TlsConnectionHandler.java:230)
~[vt-ldap-3.3.6.jar:na]
I am not sure what I have to set here ?
Thank you !
--
[image: CallidusCloud Connections]<http://www.calliduscloudconnections.com/> CallidusCloud
Connections, Las Vegas, May 5-7, 2013, REGISTER NOW<http://www.calliduscloudconnections.com/register.html>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20130228/dfac8665/attachment.html
More information about the users
mailing list