LDAP users not able to login in Agile when used Secure LDAP

We’ve integrated Agile 9.3.3 with LDAP and were able to login successfully. However, we planned to go with Secure LDAP with SSL port and integrated but LDAP users were not able to login to Agile.

While integrating Secure LDAP with Agile, we’ve used the SSL port 636, enabled SSL in Weblogic and used the same configurations that we’ve used earlier without SSL.

Anything missing in integrating Secure LDAP with Agile?

Agile User Asked on August 31, 2015 in Agile PLM (v9),   Product Collaboration.
Add Comment
6 Answer(s)

DJ –
In order to configure Agile’s LDAP settings to use a secure connection (LDAP over SSL [LDAPS]) to your LDAP servers it will be necessary to add your Root Certificates to the Agile servers Trusted Root Certification Authorities and Intermediate Certification Authorities.

The attached file includes steps for adding certificates to the Weblogic JDK.  This is not specific to Agile/LDAPS as the process for adding certificates to the certificate store of the JDK is generic, but hopefully this will help.

Agile Angel Answered on August 31, 2015.
Add Comment

Thanks Danny.

We’ve got the root CA certificate from LDAP server and so we didn’t use/export the certificate(s) from Tools->Internet Options feature. Followed the given steps on Weblogic successfully and restarted the server but still LDAP users are unable to login to Agile, even after refreshing the users from LDAP in Java Client. Note that, we didn’t perform the same steps again on end user machine as its the right way to our knowledge to do so, which might end up in doing it for all users altogether again.

Still wondering what went wrong?

Agile User Answered on September 1, 2015.
Add Comment

Correction ! We felt that its NOT the right way to perform those steps on every user end. Is it really required to do so ?

Agile User Answered on September 1, 2015.
Add Comment

Any thoughts on this ?

Agile User Answered on September 2, 2015.
Add Comment

DJ – Again, these are just generic instructions for adding Certificate Authority to the JDK.  It r may not be necessary to add the CA to the end users machines for this particular issue.
You may, however, also need to add the key certificates to the Java keystore of  OAS, Tomcat, AutoVue, and/or JavaClient Java runtime environments (JRE) as well.  

There is a reference Doc (Doc ID 569235.1) available in the Oracle Support Knowledge Database detailing the steps for adding the certificates to each of these environments.

Agile Angel Answered on September 2, 2015.
Add Comment

Not sure whether analysis gone wrong or complete approach is wrong but came to know that Agile has to be on HTTPS (or any intermediate proxy) so as to integrate with LDAPS. In order to make this happen, the certificates need to be setup which is fine. Rest of the configurations remain same and no changes.

Thanks all for the help.

Agile User Answered on April 12, 2016.
Add Comment

Your Answer

By posting your answer, you agree to the privacy policy and terms of service.