We have setup a LDAP server that is responding to our SQL*Net clients. It is configured for LDAPS but when we configure our sqlnet.ora for only the secure port, it does not work. Can't seem to get it to work over LDAPs. Thought it was a wallet issue, but does not appear to be the case.
My ldap.ora when it works
DIRECTORY_SERVERS=(myldap.mydomain.com:389:636)
DEFAULT_ADMIN_CONTEXT=dc=tns,dc=mydc
DIRECTORY_SERVER_TYPE=OID
My ldap.ora when it does not. I remove the non-ssl port 389 to force it to use 636
DIRECTORY_SERVERS=(pxtchtns01.calstate.edu::636)
DEFAULT_ADMIN_CONTEXT=dc=tns,dc=mydc
DIRECTORY_SERVER_TYPE=OID
I can use tools like JXplorer on 636 to connect. I can validate the certificate via openssl.
However, if I leave 389 in, it only uses ldap and if I remove it to force ldaps...it does not resolve getting a TNS-03505 error.