Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Subscribers 6 subscribers
  • Views 13399 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

LDAPS problem after update from 9.6.3 to 9.7.3

ITService

Hello,

after update SMC from 9.6.3 to 9.7.3 LDAPS to Microsoft DC doesn't work anymore.
In server.log I find

... [Root exception is javax.net.ssl.SSLHandshakeException: No appropriate protocol (protocol is disabled or cipher suites are inappropriate)].....

LDAP without SSL is running fine.

Best regards
Michael



This thread was automatically locked due to age.
Parents
  • +1

    Hi There,

    This is caused by the underlying Java version deactivating TLS 1.0 and 1.1 that Sophos Mobile still uses to establish a connection to the LDAP server.
     Kindly follow the steps below:

    1. Sign in to the operating system where Sophos Mobile is installed.
    2. Stop the Sophos Mobile service.
    3. Go to the folder %MDM_HOME%\wildfly\standalone\configuration\.
    4. Edit the file smc.properties using a text editor (for example Notepad).
    5. Change the line smc.ldap.tls.protocols=TLSv1,TLSv1.1 to smc.ldap.tls.protocols=TLSv1,TLSv1.1,TLSv1.2.
    6. Save the changes.
    7. Restart the Sophos Mobile Server.

    After following this procedure, the Sophos Mobile Server will utilize TLS 1.2 for the LDAPS connection.

  • 0 in reply to GlennSen

    Hi,

    problem solved, thankyou very much.

    Best regards

    Michael

Reply Children