[GeoNetwork-devel] ldaps authentication

Hi developers,

I have sent this same question to the user list, but have got no response.

I am having trouble binding to our LDAP – I have followed instructions on this page http://geonetwork-opensource.org/manuals/2.10.0/eng/users/admin/authentication/index.html#ldap and it works fine if I am using ldap port 389. But when I try to switch to ldapS port 636 it doesn’t work.

I have added the certificate to the java keystore and restarted the server. Still doesn’t work. I am passing -Djavax.net.ssl.trustStore pointing to my trust store to tomcat start up.

I get the following:

trustStore is: No File Available, using empty keystore.
trustStore type is : jks

java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

Are there any other configuration files I need to change? Why does it not find my trust store?

Cheers.

Kind Regards,
Petula Lau
Software Developer
NIWA

Please consider the environment before printing this email.
NIWA is the trading name of the National Institute of Water & Atmospheric Research Ltd.