Uploaded image for project: 'PUBLIC - Liferay Documentation'
  1. PUBLIC - Liferay Documentation
  2. LRDOCS-6360

Adding note for setting up secure LDAP because of changes in Java1.8u181

    Details

    • Type of Documentation:
      Deployment

      Description

      Hey Rich,

      This is coming from Support.

      In the article detailing how to set up LDAP, there is a section that describes how to set up your LDAP directory in SSL mode. (https://help.liferay.com/hc/en-us/articles/360017896112-LDAP-#security)

      Because of changes made in Java1.8u181 (https://www.oracle.com/technetwork/java/javase/8u181-relnotes-4479407.html), endpoint identification algorithms have been enabled by default. This can cause "applications that were previously able to successfully connect to an LDAPS server to no longer be able to do so." According to Oracle, to remedy this, you can add the following system property to your setenv.sh/bat file.

      -Dcom.sun.jndi.ldap.object.disableEndpointIdentification=true
      

        Attachments

          Activity

            People

            • Assignee:
              richard.sezov Rich Sezov
              Reporter:
              tibor.lipusz Tibor Lipusz
              Subject Matter Expert:
              Stian Sigvartsen
              Participants of an Issue:
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:

                Packages

                Version Package
                7.0.x
                7.1.x