Skip to Main Content
Forums

Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

SSL configuration for SSO certificate error

user435297Oct 25 2008
I am configured SSO to use SSL. I followed the following instructions...
http://download.oracle.com/docs/cd/B28196_01/idmanage.1014/b15989/appendixe.htm

OID is installed on Oracle Enterprise Linux 4.0.

Before I did this I had SSO working between OAS instance and the OID instance over http.

I get the error when I try and logon to the SSO administration console.

The following are all the components installed on the OIM server.
HTTP_Server
DAS
DIP
LDAP
OC4J_SECURITY
oca
Single Sign-On:orasso
Management

The logs give me the following errors
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: SSL call to NZ function nzos_Handshake failed with error 29014 (server xxxxxxx:4443, client 10.0.0.113)
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: Unknown error
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: SSL call to NZ function nzos_Handshake failed with error 28860 (server xxxxxxx:4443, client 10.0.0.113)
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: SSL fatal alert
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: SSL call to NZ function nzos_Handshake failed with error 28864 (server xxxxxxx:4443, client 10.0.0.113)
[Fri Oct 24 18:40:41 2008] [error] mod_ossl: SSL IO error [Hint: the client stop the connection unexpectedly]
[Fri Oct 24 18:40:42 2008] [info] got an event: IAS/PM/PROC_ALIVE
[Fri Oct 24 18:40:44 2008] [error] mod_ossl: SSL call to NZ function nzos_Handshake failed with error 28860 (server xxxxxxx:4443, client 10.0.0.113)
[Fri Oct 24 18:40:44 2008] [error] mod_ossl: SSL fatal alert
[Fri Oct 24 18:40:46 2008] [info] got an event: IAS/PM/PROC_READY
[Fri Oct 24 18:40:46 2008] [info] got an event: IAS/PM/PROC_ALIVE
[Fri Oct 24 18:40:49 2008] [info] got an event: IAS/PM/PROC_READY
[Fri Oct 24 18:40:49 2008] [info] got an event: IAS/PM/PROC_ALIVE
[Fri Oct 24 18:41:16 2008] [info] got an event: IAS/PM/PROC_READY
[Fri Oct 24 18:41:19 2008] [info] got an event: IAS/PM/PROC_READY
[Fri Oct 24 18:41:35 2008] [error] [client 10.0.0.113] [ecid: 1224888095:10.0.0.248:7701:0:20,0] File does not exist: /home/oracle/oim/OraHome_1/Apache/Apache/htdocs/favicon.ico
[Fri Oct 24 18:41:36 2008] [error] [client 10.0.0.113] [ecid: 1224888096:10.0.0.248:7851:0:9,0] File does not exist: /home/oracle/oim/OraHome_1/Apache/Apache/htdocs/favicon.ico
[Fri Oct 24 18:41:37 2008] [error] [client 10.0.0.113] [ecid: 1224888097:10.0.0.248:7702:0:21,0] MOD_OC4J_0376: Request initial processing failed in ac worker with HTTP status cod
e 1. This status will be passed back to the listener for error handling.
[Fri Oct 24 18:41:37 2008] [error] mod_ossl: SSL call to NZ function nzos_Handshake failed with error 28860 (server xxxxxxx:4443, client 10.0.0.113)
[Fri Oct 24 18:41:37 2008] [error] mod_ossl: SSL fatal alert



[24/Oct/2008:18:41:45 -0400] 10.0.0.113 UNKNOWN SSL_RSA_WITH_RC4_128_MD5 "GET /pls/orasso/orasso.wwsso_app_admin.ls_login?Site2pstoreToken=v1.4~... HTTP/1.1" 1548
[24/Oct/2008:18:41:45 -0400] 10.0.0.113 UNKNOWN SSL_RSA_WITH_RC4_128_MD5 "GET /sso/auth?site2pstoretoken=v1.4~0...&appctx=&locale=&v= HTTP/1.1" 309
[24/Oct/2008:18:41:46 -0400] 10.0.0.113 UNKNOWN SSL_RSA_WITH_RC4_128_MD5 "GET /sso/pages/error.jsp?p_error_code=cert_auth_err HTTP/1.1" 5161

Any help would be greatly appreciated.
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Nov 22 2008
Added on Oct 25 2008
#identity-management, #identity-manager
0 comments
1,005 views