Symantec VIP Enterprise Gateway LDAPS connection error "Root exception is javax.net.ssl.SSLHandshakeException: Illegal given domain name"

book

Article ID: 242721

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

Unable to configure LDAPS connection for the domain name having underscore in the naming convention.

Error found in the logs: [Root exception is javax.net.ssl.SSLHandshakeException: Illegal given domain name: ABC_XYZ_MNY_1.aa.bbbb.domain.com]"

LDAPS configuration with the FQDN having underscore in the naming convention fails with the  error: Illegal given domain name.

Cause

DNS names can contain only alphabetical characters (A-Z), numeric characters (0-9), the minus sign (-), and the period (.). Period characters are allowed only when they are used to delimit the components of domain style names.

Resolution

Use a valid FQDN name with valid characters only to configure the LDAPS connection in the VIP Enterprise Gateway Server User Store. Other special characters such as blanks, spaces, and underscores are permitted as part of the name. 

 

Additional Information

https://datatracker.ietf.org/doc/html/rfc952

https://datatracker.ietf.org/doc/html/rfc1035

https://datatracker.ietf.org/doc/html/rfc1123