Hi,
I'm trying to configure ODI 12.2.1 for external authentication with SSL on Linux as per doco http://docs.oracle.com/middleware/12211/odi/administer-develop/security.htm#ODIAD1097
- Successfully switched the master repository to external authentication to connect to Active Directory over SSL.
However, when I attempt to login to ODI Studio on the Linux server (Redhat 7) using external credentials I get "ODI-10199: Incorrect ODI username or password" and "Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty".
From research, the error appears to be related to SSL trust.
I have added trusted certificates for the intermediate and root certs for the client site into both the trust keystore Weblogic has been configured to use and to the trust file used by default java (JDK 1.8.0_101). However, I still get the error.
I also went into ODI Studio and updated Client Trusted Certificate Keystore to point to the cacerts trust keystore and Client Trusted Keystore Password fields under Tools > Preferences > Credentials.
If I update jps-config-jse.xml to use non-SSL then I can connect as an external user fine so there is no issue with the setup in the config file.
Anyone encountered this before? (same issue as https://community.oracle.com/thread/3920486#1379175)
thanks,
John.