Posted: 18 Feb 2020 2:47 EST Last activity: 19 Feb 2020 14:29 EST
How to enable TLS1.2 for LDAP Authentication in Pega 7.1.7
We had been using Ldap authentication in Pega 7.1.7 where we had configured the ldap server,port and bind details and the url was starting with ldap://. Recently we got a mail asking us to change the ldap server and bind details like bind name and password. The new ldap protocol is ldaps://. After we made all changes when we login to application it is throwing below error. We have even installed SSL certificates given by ldap team too. Can anyone help me on how to resolve this issue.
External authentication with LDAP failed :
javax.naming.CommunicationException: simple bind failed: <<LDAP server: port>>. Root exception is java.net.SocketException: Connection reset.
***Edited by Moderator Marissa to update Pega Academy to Product; product/version tags****
Thank you for the stackTrace.
java.net.SocketException: Connection reset
Pega uses LDAP libraries from JDK and it seems like the WebSphere server couldn't read the response from the LDAP server during authenticate call.
Connection Reset errors indicate that the service provider closed the connection while Pega(app server) was reading data off the network socket input stream.
Try exploring the below JVM argument and see if you can set it to a higher value in Websphere. The Pega platform has no interference with this.