The following error may occur when attempting to connect IQ Server running in Kubernetes to an LDAP server over SSL.
javax.naming.CommunicationException: <host>:<port>[Root exception is javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake]
For allowing secure access to LDAP, you would need configure a truststore that contains the cert from the LDAP server in the service script used to start up IQ Server. In Kubernetes, you'll need to pass this in via an environment variable in the deployment file:
env:
- name: JAVA_OPTS
value: "-Djavax.net.ssl.trustStore=/<replace_with_absolute_full_path>/nexus-iq-server-outbound.jks -Djavax.net.ssl.trustStorePassword=changeit"
Reference:
https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/
0 Comments