I think that you need to install the JCE in order to use SHA256withRSA
https://www.oracle.com/technetwork/java/javase/downloads/jce-all-download-5170447.html Otherwise, could you provide the ldap.conf you use for slapsearch ? Thanks ! Le 25/10/2018 à 12:34, Emmanuel Quevillon a écrit : > Hi Emmanuel, > > This is the correct output when trying to connect to AD using ldapsearch with > TLS: > > INFO | jvm 1 | 2018/10/25 12:32:42 | Using SSLEngineImpl. > INFO | jvm 1 | 2018/10/25 12:32:42 | Allow unsafe renegotiation: false > INFO | jvm 1 | 2018/10/25 12:32:42 | Allow legacy hello messages: true > INFO | jvm 1 | 2018/10/25 12:32:42 | Is initial handshake: true > INFO | jvm 1 | 2018/10/25 12:32:42 | Is secure renegotiation: false > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring disabled protocol: SSLv3 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_RSA_WITH_AES_256_CBC_SHA256 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 for TLSv1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_RSA_WITH_AES_256_CBC_SHA256 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | Ignoring unsupported cipher suite: > TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 for TLSv1.1 > INFO | jvm 1 | 2018/10/25 12:32:42 | [Raw read]: length = 5 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 16 03 01 00 8C > ..... > INFO | jvm 1 | 2018/10/25 12:32:42 | [Raw read]: length = 140 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 01 00 00 88 03 03 5B D1 9B > CA 03 6A 2D 39 E4 C5 ......[....j-9.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: 8A B4 6A 05 23 63 C1 DA F6 > 04 97 75 2A 06 05 D8 ..j.#c.....u*... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0020: B9 1D 3F 49 71 22 00 00 26 > 00 FF C0 2C C0 30 00 ..?Iq"..&...,.0. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0030: 9D C0 24 C0 28 00 3D C0 0A > C0 14 00 35 C0 2B C0 ..$.(.=.....5.+. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0040: 2F 00 9C C0 23 C0 27 00 3C > C0 09 C0 13 00 2F 01 /...#.'.<...../. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0050: 00 00 39 00 0A 00 08 00 06 > 00 17 00 18 00 19 00 ..9............. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0060: 0B 00 02 01 00 00 0D 00 12 > 00 10 04 01 02 01 05 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0070: 01 06 01 04 03 02 03 05 03 > 06 03 00 05 00 05 01 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0080: 00 00 00 00 00 12 00 00 00 > 17 00 00 ............ > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, READ: TLSv1 > Handshake, length = 140 > INFO | jvm 1 | 2018/10/25 12:32:42 | *** ClientHello, TLSv1.2 > INFO | jvm 1 | 2018/10/25 12:32:42 | RandomCookie: GMT: 1523620554 > bytes = { 3, 106, 45, 57, 228, 197, 138, 180, 106, 5, 35, 99, 193, 218, 246, > 4, 151, 117, 42, 6, 5, 216, 185, 29, 63, 73, 113, 34 } > INFO | jvm 1 | 2018/10/25 12:32:42 | Session ID: {} > INFO | jvm 1 | 2018/10/25 12:32:42 | Cipher Suites: > [TLS_EMPTY_RENEGOTIATION_INFO_SCSV, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_AES_256_GCM_SHA384, > TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, > TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_RSA_WITH_AES_256_CBC_SHA256, > TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, > TLS_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, > TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_RSA_WITH_AES_128_GCM_SHA256, > TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, > TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_RSA_WITH_AES_128_CBC_SHA256, > TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, > TLS_RSA_WITH_AES_128_CBC_SHA] > INFO | jvm 1 | 2018/10/25 12:32:42 | Compression Methods: { 0 } > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension elliptic_curves, curve > names: {secp256r1, secp384r1, secp521r1} > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension ec_point_formats, > formats: [uncompressed] > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension signature_algorithms, > signature_algorithms: SHA256withRSA, SHA1withRSA, SHA384withRSA, > SHA512withRSA, SHA256withECDSA, SHA1withECDSA, SHA384withECDSA, > SHA512withECDSA > INFO | jvm 1 | 2018/10/25 12:32:42 | Unsupported extension > status_request, data: 01:00:00:00:00 > INFO | jvm 1 | 2018/10/25 12:32:42 | Unsupported extension type_18, data: > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension extended_master_secret > INFO | jvm 1 | 2018/10/25 12:32:42 | *** > INFO | jvm 1 | 2018/10/25 12:32:42 | [read] MD5 and SHA1 hashes: len = > 140 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 01 00 00 88 03 03 5B D1 9B > CA 03 6A 2D 39 E4 C5 ......[....j-9.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: 8A B4 6A 05 23 63 C1 DA F6 > 04 97 75 2A 06 05 D8 ..j.#c.....u*... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0020: B9 1D 3F 49 71 22 00 00 26 > 00 FF C0 2C C0 30 00 ..?Iq"..&...,.0. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0030: 9D C0 24 C0 28 00 3D C0 0A > C0 14 00 35 C0 2B C0 ..$.(.=.....5.+. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0040: 2F 00 9C C0 23 C0 27 00 3C > C0 09 C0 13 00 2F 01 /...#.'.<...../. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0050: 00 00 39 00 0A 00 08 00 06 > 00 17 00 18 00 19 00 ..9............. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0060: 0B 00 02 01 00 00 0D 00 12 > 00 10 04 01 02 01 05 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0070: 01 06 01 04 03 02 03 05 03 > 06 03 00 05 00 05 01 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0080: 00 00 00 00 00 12 00 00 00 > 17 00 00 ............ > INFO | jvm 1 | 2018/10/25 12:32:42 | %% Initialized: [Session-27, > SSL_NULL_WITH_NULL_NULL] > INFO | jvm 1 | 2018/10/25 12:32:42 | Standard ciphersuite chosen: > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 > INFO | jvm 1 | 2018/10/25 12:32:42 | %% Negotiating: [Session-27, > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384] > INFO | jvm 1 | 2018/10/25 12:32:42 | *** ServerHello, TLSv1.2 > INFO | jvm 1 | 2018/10/25 12:32:42 | RandomCookie: GMT: 1523620554 > bytes = { 234, 24, 162, 127, 171, 251, 221, 67, 29, 115, 173, 152, 183, 253, > 23, 226, 176, 17, 198, 92, 137, 32, 124, 54, 178, 0, 47, 51 } > INFO | jvm 1 | 2018/10/25 12:32:42 | Session ID: {91, 209, 155, 202, > 218, 92, 253, 0, 253, 219, 116, 33, 190, 6, 209, 68, 137, 218, 3, 118, 65, > 80, 253, 117, 32, 18, 191, 34, 210, 214, 187, 234} > INFO | jvm 1 | 2018/10/25 12:32:42 | Cipher Suite: > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 > INFO | jvm 1 | 2018/10/25 12:32:42 | Compression Method: 0 > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension renegotiation_info, > renegotiated_connection: <empty> > INFO | jvm 1 | 2018/10/25 12:32:42 | Extension extended_master_secret > INFO | jvm 1 | 2018/10/25 12:32:42 | *** > INFO | jvm 1 | 2018/10/25 12:32:42 | Cipher suite: > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 > INFO | jvm 1 | 2018/10/25 12:32:42 | *** Certificate chain > INFO | jvm 1 | 2018/10/25 12:32:42 | chain [0] = [ > INFO | jvm 1 | 2018/10/25 12:32:42 | [ > INFO | jvm 1 | 2018/10/25 12:32:42 | Version: V3 > INFO | jvm 1 | 2018/10/25 12:32:42 | Subject: CN=System Administrator, > OU=IT, O=omicX, L=Le Petit Quevilly, ST=Haute Normandie, C=FR > INFO | jvm 1 | 2018/10/25 12:32:42 | Signature Algorithm: > SHA256withRSA, OID = 1.2.840.113549.1.1.11 > INFO | jvm 1 | 2018/10/25 12:32:42 | > INFO | jvm 1 | 2018/10/25 12:32:42 | Key: Sun RSA public key, 2048 > bits > INFO | jvm 1 | 2018/10/25 12:32:42 | modulus: > 19533962179815891487825104104185080970376595356846412882974758711644737395417290833031964782672874878103423846612624964268780138711100579750706489671073186906851182847818879045030004185073494631527679026550006069860179204738410433092998565099781215509089032414214036233493106775888926798017546588793506063349979100297333595128192705719706916011574716297626468426593377237065524999427394133123779134655968002921927210209534487429666558628099944564826056995122605346359935275134401731721856624713435085519232334843538919453543658744670583521540784570081777743830410704174845263275483037230915375670204740606837381566441 > INFO | jvm 1 | 2018/10/25 12:32:42 | public exponent: 65537 > INFO | jvm 1 | 2018/10/25 12:32:42 | Validity: [From: Wed Oct 24 > 16:13:15 CEST 2018, > INFO | jvm 1 | 2018/10/25 12:32:42 | To: Sat Oct 21 > 16:13:15 CEST 2028] > INFO | jvm 1 | 2018/10/25 12:32:42 | Issuer: CN=System Administrator, > OU=IT, O=omicX, L=Le Petit Quevilly, ST=Haute Normandie, C=FR > INFO | jvm 1 | 2018/10/25 12:32:42 | SerialNumber: [ 6048931a] > INFO | jvm 1 | 2018/10/25 12:32:42 | > INFO | jvm 1 | 2018/10/25 12:32:42 | Certificate Extensions: 1 > INFO | jvm 1 | 2018/10/25 12:32:42 | [1]: ObjectId: 2.5.29.14 > Criticality=false > INFO | jvm 1 | 2018/10/25 12:32:42 | SubjectKeyIdentifier [ > INFO | jvm 1 | 2018/10/25 12:32:42 | KeyIdentifier [ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 07 87 EE 1C 38 77 C4 27 A6 > 3A 4A D7 D9 9A D9 C7 ....8w.'.:J..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: D8 C9 3D 6B > ..=k > INFO | jvm 1 | 2018/10/25 12:32:42 | ] > INFO | jvm 1 | 2018/10/25 12:32:42 | ] > INFO | jvm 1 | 2018/10/25 12:32:42 | > INFO | jvm 1 | 2018/10/25 12:32:42 | ] > INFO | jvm 1 | 2018/10/25 12:32:42 | Algorithm: [SHA256withRSA] > INFO | jvm 1 | 2018/10/25 12:32:42 | Signature: > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 73 CE C3 14 71 FC CE 81 2A > D2 45 44 E3 2A 3C 0B s...q...*.ED.*<. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: 02 E0 65 1E 3D F9 1D 73 82 > F4 DD 3A 9F 62 10 D6 ..e.=..s...:.b.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0020: BB E5 03 1F A0 FE F0 85 9C > 70 09 67 4B B5 F5 D7 .........p.gK... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0030: 16 76 CB E4 47 3D 34 8D BF > 14 98 74 66 8C B9 B3 .v..G=4....tf... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0040: BA 42 60 62 B2 E2 B9 1F F6 > 8B EF 12 86 1C EB 0C .B`b............ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0050: 48 CD 15 58 6A 36 8C F3 16 > 02 B4 C3 AD 44 82 38 H..Xj6.......D.8 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0060: 9E 9F A4 AC A9 A9 79 31 49 > 31 57 1F 82 58 69 86 ......y1I1W..Xi. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0070: 6A B0 16 39 97 4A 81 E1 FC > D1 07 88 80 B8 ED A1 j..9.J.......... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0080: B1 E5 70 1C 19 F3 AE 12 A2 > F4 6E 34 DF CD 11 4B ..p.......n4...K > INFO | jvm 1 | 2018/10/25 12:32:42 | 0090: 8F 9D ED 7E 6E 52 14 AC 7E > 36 DD 02 10 85 15 87 ....nR...6...... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00A0: 47 3F 98 25 D0 E5 CE 3B 02 > 5A 1B 5F 03 61 6E 55 G?.%...;.Z._.anU > INFO | jvm 1 | 2018/10/25 12:32:42 | 00B0: 19 51 D6 43 6B 20 3C 33 CA > 8C 42 6E E5 E2 41 6F .Q.Ck <3..Bn..Ao > INFO | jvm 1 | 2018/10/25 12:32:42 | 00C0: 0D 89 AC 6A 7E C7 4D B4 1D > 1D 36 F1 F1 82 44 C7 ...j..M...6...D. > INFO | jvm 1 | 2018/10/25 12:32:42 | 00D0: 4B A3 CE FD 29 58 D9 78 93 > A3 71 CF 41 E6 6B 75 K...)X.x..q.A.ku > INFO | jvm 1 | 2018/10/25 12:32:42 | 00E0: E5 82 2D C9 DC D0 AC 1A 79 > 45 87 24 2B CF F4 E1 ..-.....yE.$+... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00F0: 75 CF C2 DC 32 F0 1A 2B C7 > 70 C7 93 E8 40 12 9F u...2..+.p...@.. > INFO | jvm 1 | 2018/10/25 12:32:42 | > INFO | jvm 1 | 2018/10/25 12:32:42 | ] > INFO | jvm 1 | 2018/10/25 12:32:42 | *** > INFO | jvm 1 | 2018/10/25 12:32:42 | *** ECDH ServerKeyExchange > INFO | jvm 1 | 2018/10/25 12:32:42 | Signature Algorithm SHA256withRSA > INFO | jvm 1 | 2018/10/25 12:32:42 | Server key: Sun EC public key, 256 > bits > INFO | jvm 1 | 2018/10/25 12:32:42 | public x coord: > 63207928542358545516553361469265922154655088287454953924131173834841340012660 > INFO | jvm 1 | 2018/10/25 12:32:42 | public y coord: > 15590534124986338528407086264624374966549757622455530089441100215454026498836 > INFO | jvm 1 | 2018/10/25 12:32:42 | parameters: secp256r1 [NIST > P-256, X9.62 prime256v1] (1.2.840.10045.3.1.7) > INFO | jvm 1 | 2018/10/25 12:32:42 | *** CertificateRequest > INFO | jvm 1 | 2018/10/25 12:32:42 | Cert Types: RSA, DSS, ECDSA > INFO | jvm 1 | 2018/10/25 12:32:42 | Supported Signature Algorithms: > SHA512withECDSA, SHA512withRSA, SHA384withECDSA, SHA384withRSA, > SHA256withECDSA, SHA256withRSA, SHA256withDSA, SHA224withECDSA, > SHA224withRSA, SHA224withDSA, SHA1withECDSA, SHA1withRSA, SHA1withDSA > INFO | jvm 1 | 2018/10/25 12:32:42 | Cert Authorities: > INFO | jvm 1 | 2018/10/25 12:32:42 | <Empty> > INFO | jvm 1 | 2018/10/25 12:32:42 | *** ServerHelloDone > INFO | jvm 1 | 2018/10/25 12:32:42 | [write] MD5 and SHA1 hashes: len = > 1399 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 02 00 00 51 03 03 5B D1 9B > CA EA 18 A2 7F AB FB ...Q..[......... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: DD 43 1D 73 AD 98 B7 FD 17 > E2 B0 11 C6 5C 89 20 .C.s.........\. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0020: 7C 36 B2 00 2F 33 20 5B D1 > 9B CA DA 5C FD 00 FD .6../3 [....\... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0030: DB 74 21 BE 06 D1 44 89 DA > 03 76 41 50 FD 75 20 .t!...D...vAP.u > INFO | jvm 1 | 2018/10/25 12:32:42 | 0040: 12 BF 22 D2 D6 BB EA C0 30 > 00 00 09 FF 01 00 01 ..".....0....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0050: 00 00 17 00 00 0B 00 03 A7 > 00 03 A4 00 03 A1 30 ...............0 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0060: 82 03 9D 30 82 02 85 A0 03 > 02 01 02 02 04 60 48 ...0..........`H > INFO | jvm 1 | 2018/10/25 12:32:42 | 0070: 93 1A 30 0D 06 09 2A 86 48 > 86 F7 0D 01 01 0B 05 ..0...*.H....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0080: 00 30 7F 31 0B 30 09 06 03 > 55 04 06 13 02 46 52 .0.1.0...U....FR > INFO | jvm 1 | 2018/10/25 12:32:42 | 0090: 31 18 30 16 06 03 55 04 08 > 13 0F 48 61 75 74 65 1.0...U....Haute > INFO | jvm 1 | 2018/10/25 12:32:42 | 00A0: 20 4E 6F 72 6D 61 6E 64 69 > 65 31 1A 30 18 06 03 Normandie1.0... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00B0: 55 04 07 13 11 4C 65 20 50 > 65 74 69 74 20 51 75 U....Le Petit Qu > INFO | jvm 1 | 2018/10/25 12:32:42 | 00C0: 65 76 69 6C 6C 79 31 0E 30 > 0C 06 03 55 04 0A 13 evilly1.0...U... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00D0: 05 6F 6D 69 63 58 31 0B 30 > 09 06 03 55 04 0B 13 .omicX1.0...U... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00E0: 02 49 54 31 1D 30 1B 06 03 > 55 04 03 13 14 53 79 .IT1.0...U....Sy > INFO | jvm 1 | 2018/10/25 12:32:42 | 00F0: 73 74 65 6D 20 41 64 6D 69 > 6E 69 73 74 72 61 74 stem Administrat > INFO | jvm 1 | 2018/10/25 12:32:42 | 0100: 6F 72 30 1E 17 0D 31 38 31 > 30 32 34 31 34 31 33 or0...1810241413 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0110: 31 35 5A 17 0D 32 38 31 30 > 32 31 31 34 31 33 31 15Z..28102114131 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0120: 35 5A 30 7F 31 0B 30 09 06 > 03 55 04 06 13 02 46 5Z0.1.0...U....F > INFO | jvm 1 | 2018/10/25 12:32:42 | 0130: 52 31 18 30 16 06 03 55 04 > 08 13 0F 48 61 75 74 R1.0...U....Haut > INFO | jvm 1 | 2018/10/25 12:32:42 | 0140: 65 20 4E 6F 72 6D 61 6E 64 > 69 65 31 1A 30 18 06 e Normandie1.0.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0150: 03 55 04 07 13 11 4C 65 20 > 50 65 74 69 74 20 51 .U....Le Petit Q > INFO | jvm 1 | 2018/10/25 12:32:42 | 0160: 75 65 76 69 6C 6C 79 31 0E > 30 0C 06 03 55 04 0A uevilly1.0...U.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0170: 13 05 6F 6D 69 63 58 31 0B > 30 09 06 03 55 04 0B ..omicX1.0...U.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0180: 13 02 49 54 31 1D 30 1B 06 > 03 55 04 03 13 14 53 ..IT1.0...U....S > INFO | jvm 1 | 2018/10/25 12:32:42 | 0190: 79 73 74 65 6D 20 41 64 6D > 69 6E 69 73 74 72 61 ystem Administra > INFO | jvm 1 | 2018/10/25 12:32:42 | 01A0: 74 6F 72 30 82 01 22 30 0D > 06 09 2A 86 48 86 F7 tor0.."0...*.H.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 01B0: 0D 01 01 01 05 00 03 82 01 > 0F 00 30 82 01 0A 02 ...........0.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 01C0: 82 01 01 00 9A BD 21 24 9A > 50 4F A2 DF 40 7B 60 ......!$.PO..@.` > INFO | jvm 1 | 2018/10/25 12:32:42 | 01D0: 9C BE ED A3 42 93 1C 40 64 > 29 11 9F 5F FF AB 73 ....B..@d).._..s > INFO | jvm 1 | 2018/10/25 12:32:42 | 01E0: 21 CC 1D 2B EE 66 15 09 03 > 5D 31 02 DD B5 63 97 !..+.f...]1...c. > INFO | jvm 1 | 2018/10/25 12:32:42 | 01F0: 92 95 74 CA DA F4 64 E4 19 > 28 E2 28 A5 0C 7B 95 ..t...d..(.(.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0200: C8 D1 B1 D5 E4 22 34 07 FC > 6B 69 79 7E 80 98 9A ....."4..kiy.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0210: 17 7F 42 32 EA AF BB C6 69 > D0 F6 5C E3 9E 8E 18 ..B2....i..\.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0220: 33 59 08 D9 47 26 EC FA 92 > E7 CA B5 F8 41 55 24 3Y..G&.......AU$ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0230: B5 BE DA 29 45 31 68 20 DB > 97 B6 3A 48 72 E8 B8 ...)E1h ...:Hr.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0240: F5 C5 53 F2 AE C5 2F 3C 8E > D4 1A 95 C9 7E F2 D9 ..S.../<........ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0250: 81 1B F3 84 C4 9A 75 EA D6 > 0D D2 32 A4 14 61 B3 ......u....2..a. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0260: 74 E3 92 C9 DF 69 FE E7 60 > 05 8A 0A 94 61 CD 7C t....i..`....a.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0270: 67 53 70 2E BD 73 C3 78 26 > 86 C9 96 1A 0D 9D 80 gSp..s.x&....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0280: 00 87 CE F6 BE 40 37 5E 42 > 3F F1 BB 47 E9 94 CA .....@7^B?..G... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0290: 87 E6 96 68 32 9A C4 69 B8 > FE 0E 80 C0 F2 0D 70 ...h2..i.......p > INFO | jvm 1 | 2018/10/25 12:32:42 | 02A0: 66 0E 7B 6C 2E 70 4C 52 F8 > 9D BE 6C D3 AD 83 AE f..l.pLR...l.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 02B0: A1 B3 E0 14 54 79 56 2B 1B > 5E 52 83 FC B0 62 64 ....TyV+.^R...bd > INFO | jvm 1 | 2018/10/25 12:32:42 | 02C0: 3D CA 8F E9 02 03 01 00 01 > A3 21 30 1F 30 1D 06 =.........!0.0.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 02D0: 03 55 1D 0E 04 16 04 14 07 > 87 EE 1C 38 77 C4 27 .U..........8w.' > INFO | jvm 1 | 2018/10/25 12:32:42 | 02E0: A6 3A 4A D7 D9 9A D9 C7 D8 > C9 3D 6B 30 0D 06 09 .:J.......=k0... > INFO | jvm 1 | 2018/10/25 12:32:42 | 02F0: 2A 86 48 86 F7 0D 01 01 0B > 05 00 03 82 01 01 00 *.H............. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0300: 73 CE C3 14 71 FC CE 81 2A > D2 45 44 E3 2A 3C 0B s...q...*.ED.*<. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0310: 02 E0 65 1E 3D F9 1D 73 82 > F4 DD 3A 9F 62 10 D6 ..e.=..s...:.b.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0320: BB E5 03 1F A0 FE F0 85 9C > 70 09 67 4B B5 F5 D7 .........p.gK... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0330: 16 76 CB E4 47 3D 34 8D BF > 14 98 74 66 8C B9 B3 .v..G=4....tf... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0340: BA 42 60 62 B2 E2 B9 1F F6 > 8B EF 12 86 1C EB 0C .B`b............ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0350: 48 CD 15 58 6A 36 8C F3 16 > 02 B4 C3 AD 44 82 38 H..Xj6.......D.8 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0360: 9E 9F A4 AC A9 A9 79 31 49 > 31 57 1F 82 58 69 86 ......y1I1W..Xi. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0370: 6A B0 16 39 97 4A 81 E1 FC > D1 07 88 80 B8 ED A1 j..9.J.......... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0380: B1 E5 70 1C 19 F3 AE 12 A2 > F4 6E 34 DF CD 11 4B ..p.......n4...K > INFO | jvm 1 | 2018/10/25 12:32:42 | 0390: 8F 9D ED 7E 6E 52 14 AC 7E > 36 DD 02 10 85 15 87 ....nR...6...... > INFO | jvm 1 | 2018/10/25 12:32:42 | 03A0: 47 3F 98 25 D0 E5 CE 3B 02 > 5A 1B 5F 03 61 6E 55 G?.%...;.Z._.anU > INFO | jvm 1 | 2018/10/25 12:32:42 | 03B0: 19 51 D6 43 6B 20 3C 33 CA > 8C 42 6E E5 E2 41 6F .Q.Ck <3..Bn..Ao > INFO | jvm 1 | 2018/10/25 12:32:42 | 03C0: 0D 89 AC 6A 7E C7 4D B4 1D > 1D 36 F1 F1 82 44 C7 ...j..M...6...D. > INFO | jvm 1 | 2018/10/25 12:32:42 | 03D0: 4B A3 CE FD 29 58 D9 78 93 > A3 71 CF 41 E6 6B 75 K...)X.x..q.A.ku > INFO | jvm 1 | 2018/10/25 12:32:42 | 03E0: E5 82 2D C9 DC D0 AC 1A 79 > 45 87 24 2B CF F4 E1 ..-.....yE.$+... > INFO | jvm 1 | 2018/10/25 12:32:42 | 03F0: 75 CF C2 DC 32 F0 1A 2B C7 > 70 C7 93 E8 40 12 9F u...2..+.p...@.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0400: 0C 00 01 49 03 00 17 41 04 > 8B BE 6B 75 37 1C 27 ...I...A...ku7.' > INFO | jvm 1 | 2018/10/25 12:32:42 | 0410: 62 96 08 34 CE C8 E8 C8 9E > 9B 2A 6C 68 81 82 52 b..4......*lh..R > INFO | jvm 1 | 2018/10/25 12:32:42 | 0420: FD A2 06 66 99 BA 54 68 74 > 22 77 ED FA B0 63 43 ...f..Tht"w...cC > INFO | jvm 1 | 2018/10/25 12:32:42 | 0430: 20 01 A2 9F 7D A1 79 11 B8 > 08 F2 86 83 17 3B 99 .....y.......;. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0440: E1 17 32 3E F3 95 25 03 14 > 04 01 01 00 02 69 1D ..2>..%.......i. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0450: 3F B5 B2 A3 E4 EF CE 7D B8 > 53 2F 3A 07 C0 14 AD ?........S/:.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0460: 94 BC 37 E6 6E BC 47 6D 54 > BA 78 CF AE B2 6F 93 ..7.n.GmT.x...o. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0470: 5C 8C 35 99 AB 49 3D 88 FD > 17 D4 6B 80 D6 78 7C \.5..I=....k..x. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0480: DB 5B 18 33 BA 14 12 D1 75 > 57 C7 67 F3 13 D3 DB .[.3....uW.g.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0490: 1B 08 C8 0F 91 CF E7 C3 9D > 2F BF B7 B2 25 57 3C ........./...%W< > INFO | jvm 1 | 2018/10/25 12:32:42 | 04A0: 05 99 84 69 7E 57 A4 22 68 > 8C EE 6F B1 4E 9C 65 ...i.W."h..o.N.e > INFO | jvm 1 | 2018/10/25 12:32:42 | 04B0: C7 B2 93 51 91 46 07 B8 A8 > 26 25 8B 3F E9 76 1C ...Q.F...&%.?.v. > INFO | jvm 1 | 2018/10/25 12:32:42 | 04C0: B5 8E 58 5F 7F C1 6E E9 5B > 43 E0 03 C8 4B 22 2C ..X_..n.[C...K", > INFO | jvm 1 | 2018/10/25 12:32:42 | 04D0: 84 97 A4 84 3A 7E 86 19 DC > 78 2B F2 1E 47 FF 0E ....:....x+..G.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 04E0: F4 F4 4D DC 21 80 15 3C DA > A7 5E A9 1F 8E DF C6 ..M.!..<..^..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 04F0: B6 F0 C7 90 6F 76 F7 69 CA > 38 82 7D D8 47 94 71 ....ov.i.8...G.q > INFO | jvm 1 | 2018/10/25 12:32:42 | 0500: CC D7 B1 4F D5 95 4D EA FE > 98 2F 8F EA AF C0 2E ...O..M.../..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0510: 3E C2 1D 3E 84 6F 2D 97 1B > 7C 7C CD 49 1A 82 9C >..>.o-.....I... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0520: 11 7A 0D 53 87 18 34 8D 53 > A1 F7 DB A3 C7 88 7E .z.S..4.S....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0530: 6B 52 95 83 5A 5B E7 72 3C > 2A 4F 70 A4 1F FD CE kR..Z[.r<*Op.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0540: 9B 82 E6 E9 63 22 A0 7A E5 > 1A 18 FB FD 0D 00 00 ....c".z........ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0550: 22 03 01 02 40 00 1A 06 03 > 06 01 05 03 05 01 04 "...@........... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0560: 03 04 01 04 02 03 03 03 01 > 03 02 02 03 02 01 02 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0570: 02 00 00 0E 00 00 00 > ....... > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, WRITE: TLSv1.2 > Handshake, length = 1399 > INFO | jvm 1 | 2018/10/25 12:32:42 | [Raw write]: length = 1404 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 16 03 03 05 77 02 00 00 51 > 03 03 5B D1 9B CA EA ....w...Q..[.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0010: 18 A2 7F AB FB DD 43 1D 73 > AD 98 B7 FD 17 E2 B0 ......C.s....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0020: 11 C6 5C 89 20 7C 36 B2 00 > 2F 33 20 5B D1 9B CA ..\. .6../3 [... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0030: DA 5C FD 00 FD DB 74 21 BE > 06 D1 44 89 DA 03 76 .\....t!...D...v > INFO | jvm 1 | 2018/10/25 12:32:42 | 0040: 41 50 FD 75 20 12 BF 22 D2 > D6 BB EA C0 30 00 00 AP.u ..".....0.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0050: 09 FF 01 00 01 00 00 17 00 > 00 0B 00 03 A7 00 03 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0060: A4 00 03 A1 30 82 03 9D 30 > 82 02 85 A0 03 02 01 ....0...0....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0070: 02 02 04 60 48 93 1A 30 0D > 06 09 2A 86 48 86 F7 ...`H..0...*.H.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0080: 0D 01 01 0B 05 00 30 7F 31 > 0B 30 09 06 03 55 04 ......0.1.0...U. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0090: 06 13 02 46 52 31 18 30 16 > 06 03 55 04 08 13 0F ...FR1.0...U.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 00A0: 48 61 75 74 65 20 4E 6F 72 > 6D 61 6E 64 69 65 31 Haute Normandie1 > INFO | jvm 1 | 2018/10/25 12:32:42 | 00B0: 1A 30 18 06 03 55 04 07 13 > 11 4C 65 20 50 65 74 .0...U....Le Pet > INFO | jvm 1 | 2018/10/25 12:32:42 | 00C0: 69 74 20 51 75 65 76 69 6C > 6C 79 31 0E 30 0C 06 it Quevilly1.0.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 00D0: 03 55 04 0A 13 05 6F 6D 69 > 63 58 31 0B 30 09 06 .U....omicX1.0.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 00E0: 03 55 04 0B 13 02 49 54 31 > 1D 30 1B 06 03 55 04 .U....IT1.0...U. > INFO | jvm 1 | 2018/10/25 12:32:42 | 00F0: 03 13 14 53 79 73 74 65 6D > 20 41 64 6D 69 6E 69 ...System Admini > INFO | jvm 1 | 2018/10/25 12:32:42 | 0100: 73 74 72 61 74 6F 72 30 1E > 17 0D 31 38 31 30 32 strator0...18102 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0110: 34 31 34 31 33 31 35 5A 17 > 0D 32 38 31 30 32 31 4141315Z..281021 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0120: 31 34 31 33 31 35 5A 30 7F > 31 0B 30 09 06 03 55 141315Z0.1.0...U > INFO | jvm 1 | 2018/10/25 12:32:42 | 0130: 04 06 13 02 46 52 31 18 30 > 16 06 03 55 04 08 13 ....FR1.0...U... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0140: 0F 48 61 75 74 65 20 4E 6F > 72 6D 61 6E 64 69 65 .Haute Normandie > INFO | jvm 1 | 2018/10/25 12:32:42 | 0150: 31 1A 30 18 06 03 55 04 07 > 13 11 4C 65 20 50 65 1.0...U....Le Pe > INFO | jvm 1 | 2018/10/25 12:32:42 | 0160: 74 69 74 20 51 75 65 76 69 > 6C 6C 79 31 0E 30 0C tit Quevilly1.0. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0170: 06 03 55 04 0A 13 05 6F 6D > 69 63 58 31 0B 30 09 ..U....omicX1.0. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0180: 06 03 55 04 0B 13 02 49 54 > 31 1D 30 1B 06 03 55 ..U....IT1.0...U > INFO | jvm 1 | 2018/10/25 12:32:42 | 0190: 04 03 13 14 53 79 73 74 65 > 6D 20 41 64 6D 69 6E ....System Admin > INFO | jvm 1 | 2018/10/25 12:32:42 | 01A0: 69 73 74 72 61 74 6F 72 30 > 82 01 22 30 0D 06 09 istrator0.."0... > INFO | jvm 1 | 2018/10/25 12:32:42 | 01B0: 2A 86 48 86 F7 0D 01 01 01 > 05 00 03 82 01 0F 00 *.H............. > INFO | jvm 1 | 2018/10/25 12:32:42 | 01C0: 30 82 01 0A 02 82 01 01 00 > 9A BD 21 24 9A 50 4F 0..........!$.PO > INFO | jvm 1 | 2018/10/25 12:32:42 | 01D0: A2 DF 40 7B 60 9C BE ED A3 > 42 93 1C 40 64 29 11 ..@.`....B..@d). > INFO | jvm 1 | 2018/10/25 12:32:42 | 01E0: 9F 5F FF AB 73 21 CC 1D 2B > EE 66 15 09 03 5D 31 ._..s!..+.f...]1 > INFO | jvm 1 | 2018/10/25 12:32:42 | 01F0: 02 DD B5 63 97 92 95 74 CA > DA F4 64 E4 19 28 E2 ...c...t...d..(. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0200: 28 A5 0C 7B 95 C8 D1 B1 D5 > E4 22 34 07 FC 6B 69 (........."4..ki > INFO | jvm 1 | 2018/10/25 12:32:42 | 0210: 79 7E 80 98 9A 17 7F 42 32 > EA AF BB C6 69 D0 F6 y......B2....i.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0220: 5C E3 9E 8E 18 33 59 08 D9 > 47 26 EC FA 92 E7 CA \....3Y..G&..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0230: B5 F8 41 55 24 B5 BE DA 29 > 45 31 68 20 DB 97 B6 ..AU$...)E1h ... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0240: 3A 48 72 E8 B8 F5 C5 53 F2 > AE C5 2F 3C 8E D4 1A :Hr....S.../<... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0250: 95 C9 7E F2 D9 81 1B F3 84 > C4 9A 75 EA D6 0D D2 ...........u.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0260: 32 A4 14 61 B3 74 E3 92 C9 > DF 69 FE E7 60 05 8A 2..a.t....i..`.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0270: 0A 94 61 CD 7C 67 53 70 2E > BD 73 C3 78 26 86 C9 ..a..gSp..s.x&.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0280: 96 1A 0D 9D 80 00 87 CE F6 > BE 40 37 5E 42 3F F1 ..........@7^B?. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0290: BB 47 E9 94 CA 87 E6 96 68 > 32 9A C4 69 B8 FE 0E .G......h2..i... > INFO | jvm 1 | 2018/10/25 12:32:42 | 02A0: 80 C0 F2 0D 70 66 0E 7B 6C > 2E 70 4C 52 F8 9D BE ....pf..l.pLR... > INFO | jvm 1 | 2018/10/25 12:32:42 | 02B0: 6C D3 AD 83 AE A1 B3 E0 14 > 54 79 56 2B 1B 5E 52 l........TyV+.^R > INFO | jvm 1 | 2018/10/25 12:32:42 | 02C0: 83 FC B0 62 64 3D CA 8F E9 > 02 03 01 00 01 A3 21 ...bd=.........! > INFO | jvm 1 | 2018/10/25 12:32:42 | 02D0: 30 1F 30 1D 06 03 55 1D 0E > 04 16 04 14 07 87 EE 0.0...U......... > INFO | jvm 1 | 2018/10/25 12:32:42 | 02E0: 1C 38 77 C4 27 A6 3A 4A D7 > D9 9A D9 C7 D8 C9 3D .8w.'.:J.......= > INFO | jvm 1 | 2018/10/25 12:32:42 | 02F0: 6B 30 0D 06 09 2A 86 48 86 > F7 0D 01 01 0B 05 00 k0...*.H........ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0300: 03 82 01 01 00 73 CE C3 14 > 71 FC CE 81 2A D2 45 .....s...q...*.E > INFO | jvm 1 | 2018/10/25 12:32:42 | 0310: 44 E3 2A 3C 0B 02 E0 65 1E > 3D F9 1D 73 82 F4 DD D.*<...e.=..s... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0320: 3A 9F 62 10 D6 BB E5 03 1F > A0 FE F0 85 9C 70 09 :.b...........p. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0330: 67 4B B5 F5 D7 16 76 CB E4 > 47 3D 34 8D BF 14 98 gK....v..G=4.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0340: 74 66 8C B9 B3 BA 42 60 62 > B2 E2 B9 1F F6 8B EF tf....B`b....... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0350: 12 86 1C EB 0C 48 CD 15 58 > 6A 36 8C F3 16 02 B4 .....H..Xj6..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0360: C3 AD 44 82 38 9E 9F A4 AC > A9 A9 79 31 49 31 57 ..D.8......y1I1W > INFO | jvm 1 | 2018/10/25 12:32:42 | 0370: 1F 82 58 69 86 6A B0 16 39 > 97 4A 81 E1 FC D1 07 ..Xi.j..9.J..... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0380: 88 80 B8 ED A1 B1 E5 70 1C > 19 F3 AE 12 A2 F4 6E .......p.......n > INFO | jvm 1 | 2018/10/25 12:32:42 | 0390: 34 DF CD 11 4B 8F 9D ED 7E > 6E 52 14 AC 7E 36 DD 4...K....nR...6. > INFO | jvm 1 | 2018/10/25 12:32:42 | 03A0: 02 10 85 15 87 47 3F 98 25 > D0 E5 CE 3B 02 5A 1B .....G?.%...;.Z. > INFO | jvm 1 | 2018/10/25 12:32:42 | 03B0: 5F 03 61 6E 55 19 51 D6 43 > 6B 20 3C 33 CA 8C 42 _.anU.Q.Ck <3..B > INFO | jvm 1 | 2018/10/25 12:32:42 | 03C0: 6E E5 E2 41 6F 0D 89 AC 6A > 7E C7 4D B4 1D 1D 36 n..Ao...j..M...6 > INFO | jvm 1 | 2018/10/25 12:32:42 | 03D0: F1 F1 82 44 C7 4B A3 CE FD > 29 58 D9 78 93 A3 71 ...D.K...)X.x..q > INFO | jvm 1 | 2018/10/25 12:32:42 | 03E0: CF 41 E6 6B 75 E5 82 2D C9 > DC D0 AC 1A 79 45 87 .A.ku..-.....yE. > INFO | jvm 1 | 2018/10/25 12:32:42 | 03F0: 24 2B CF F4 E1 75 CF C2 DC > 32 F0 1A 2B C7 70 C7 $+...u...2..+.p. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0400: 93 E8 40 12 9F 0C 00 01 49 > 03 00 17 41 04 8B BE [email protected]... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0410: 6B 75 37 1C 27 62 96 08 34 > CE C8 E8 C8 9E 9B 2A ku7.'b..4......* > INFO | jvm 1 | 2018/10/25 12:32:42 | 0420: 6C 68 81 82 52 FD A2 06 66 > 99 BA 54 68 74 22 77 lh..R...f..Tht"w > INFO | jvm 1 | 2018/10/25 12:32:42 | 0430: ED FA B0 63 43 20 01 A2 9F > 7D A1 79 11 B8 08 F2 ...cC .....y.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0440: 86 83 17 3B 99 E1 17 32 3E > F3 95 25 03 14 04 01 ...;...2>..%.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0450: 01 00 02 69 1D 3F B5 B2 A3 > E4 EF CE 7D B8 53 2F ...i.?........S/ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0460: 3A 07 C0 14 AD 94 BC 37 E6 > 6E BC 47 6D 54 BA 78 :......7.n.GmT.x > INFO | jvm 1 | 2018/10/25 12:32:42 | 0470: CF AE B2 6F 93 5C 8C 35 99 > AB 49 3D 88 FD 17 D4 ...o.\.5..I=.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0480: 6B 80 D6 78 7C DB 5B 18 33 > BA 14 12 D1 75 57 C7 k..x..[.3....uW. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0490: 67 F3 13 D3 DB 1B 08 C8 0F > 91 CF E7 C3 9D 2F BF g............./. > INFO | jvm 1 | 2018/10/25 12:32:42 | 04A0: B7 B2 25 57 3C 05 99 84 69 > 7E 57 A4 22 68 8C EE ..%W<...i.W."h.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 04B0: 6F B1 4E 9C 65 C7 B2 93 51 > 91 46 07 B8 A8 26 25 o.N.e...Q.F...&% > INFO | jvm 1 | 2018/10/25 12:32:42 | 04C0: 8B 3F E9 76 1C B5 8E 58 5F > 7F C1 6E E9 5B 43 E0 .?.v...X_..n.[C. > INFO | jvm 1 | 2018/10/25 12:32:42 | 04D0: 03 C8 4B 22 2C 84 97 A4 84 > 3A 7E 86 19 DC 78 2B ..K",....:....x+ > INFO | jvm 1 | 2018/10/25 12:32:42 | 04E0: F2 1E 47 FF 0E F4 F4 4D DC > 21 80 15 3C DA A7 5E ..G....M.!..<..^ > INFO | jvm 1 | 2018/10/25 12:32:42 | 04F0: A9 1F 8E DF C6 B6 F0 C7 90 > 6F 76 F7 69 CA 38 82 .........ov.i.8. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0500: 7D D8 47 94 71 CC D7 B1 4F > D5 95 4D EA FE 98 2F ..G.q...O..M.../ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0510: 8F EA AF C0 2E 3E C2 1D 3E > 84 6F 2D 97 1B 7C 7C .....>..>.o-.... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0520: CD 49 1A 82 9C 11 7A 0D 53 > 87 18 34 8D 53 A1 F7 .I....z.S..4.S.. > INFO | jvm 1 | 2018/10/25 12:32:42 | 0530: DB A3 C7 88 7E 6B 52 95 83 > 5A 5B E7 72 3C 2A 4F .....kR..Z[.r<*O > INFO | jvm 1 | 2018/10/25 12:32:42 | 0540: 70 A4 1F FD CE 9B 82 E6 E9 > 63 22 A0 7A E5 1A 18 p........c".z... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0550: FB FD 0D 00 00 22 03 01 02 > 40 00 1A 06 03 06 01 ....."...@...... > INFO | jvm 1 | 2018/10/25 12:32:42 | 0560: 05 03 05 01 04 03 04 01 04 > 02 03 03 03 01 03 02 ................ > INFO | jvm 1 | 2018/10/25 12:32:42 | 0570: 02 03 02 01 02 02 00 00 0E > 00 00 00 ............ > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, fatal error: 80: > problem unwrapping net record > INFO | jvm 1 | 2018/10/25 12:32:42 | javax.net.ssl.SSLException: > Unsupported record version Unknown-5.2 > INFO | jvm 1 | 2018/10/25 12:32:42 | %% Invalidated: [Session-27, > TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384] > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, SEND TLSv1.2 ALERT: > fatal, description = internal_error > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, WRITE: TLSv1.2 > Alert, length = 2 > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, called > closeOutbound() > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, > closeOutboundInternal() > INFO | jvm 1 | 2018/10/25 12:32:42 | [Raw write]: length = 7 > INFO | jvm 1 | 2018/10/25 12:32:42 | 0000: 15 03 03 00 02 02 50 > ......P > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, called > closeInbound() > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, fatal: engine > already closed. Rethrowing javax.net.ssl.SSLException: Inbound closed before > receiving peer's close_notify: possible truncation attack? > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, called > closeOutbound() > INFO | jvm 1 | 2018/10/25 12:32:42 | NioProcessor-8, > closeOutboundInternal() > INFO | jvm 1 | 2018/10/25 12:32:42 | [12:32:42] WARN > [org.apache.directory.server.ldap.LdapProtocolHandler] - Unexpected exception > forcing session to close: sending disconnect notice to client. > INFO | jvm 1 | 2018/10/25 12:32:42 | > javax.net.ssl.SSLHandshakeException: SSL handshake failed. > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslFilter.messageReceived(SslFilter.java:535) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextMessageReceived(DefaultIoFilterChain.java:650) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1300(DefaultIoFilterChain.java:49) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.messageReceived(DefaultIoFilterChain.java:1141) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.IoFilterAdapter.messageReceived(IoFilterAdapter.java:122) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextMessageReceived(DefaultIoFilterChain.java:650) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.filterchain.DefaultIoFilterChain.fireMessageReceived(DefaultIoFilterChain.java:643) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.polling.AbstractPollingIoProcessor.read(AbstractPollingIoProcessor.java:539) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.polling.AbstractPollingIoProcessor.access$1200(AbstractPollingIoProcessor.java:68) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.process(AbstractPollingIoProcessor.java:1242) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.process(AbstractPollingIoProcessor.java:1231) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.run(AbstractPollingIoProcessor.java:683) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:64) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > java.lang.Thread.run(Thread.java:748) > INFO | jvm 1 | 2018/10/25 12:32:42 | Caused by: > javax.net.ssl.SSLException: Unsupported record version Unknown-5.2 > INFO | jvm 1 | 2018/10/25 12:32:42 | at > sun.security.ssl.InputRecord.checkRecordVersion(InputRecord.java:552) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > sun.security.ssl.EngineInputRecord.bytesInCompletePacket(EngineInputRecord.java:113) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:868) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:781) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslHandler.unwrap(SslHandler.java:746) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslHandler.unwrapHandshake(SslHandler.java:683) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslHandler.handshake(SslHandler.java:568) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslHandler.messageReceived(SslHandler.java:353) > INFO | jvm 1 | 2018/10/25 12:32:42 | at > org.apache.mina.filter.ssl.SslFilter.messageReceived(SslFilter.java:516) > INFO | jvm 1 | 2018/10/25 12:32:42 | ... 15 more > > > Sorry for the previous error > > Emmanuel > > On 24/10/2018 21:00, Emmanuel Lécharny wrote: > > Hi Emmanuel, > > a few questions : > > - Java version ? > - Server LDAPS configuration ? (typically, which TLS protocol versions > are you allowing) > - Do you require client auth ? request client auth ? > - Can you provide the full debug log ? > - Can you start the server with -Djavax.net.debug=all and provide the > produced logs ? > > Le 24/10/2018 à 16:51, Emmanuel Quevillon a écrit : > > > Hi, > > I've freshly installed ApacheDirectory (AD) (2.0.0.AM25) on a debian server > (9.5) and all installed nicely. > As recommanded into the documentation, I've changed the admin user password. > I did it using ApacheDirectory Studio (ADS) installed > on my mac. > > So using ADS, I can connect nicely to AD using port 10389 (configured) using > no encrypted connection. > I've then decided to activate (and test) ldaps and tls as recommanded in the > documentation. > I've created my own keystore file to be loaded on the server under > /opt/apacheds-2.0.0.AM25/conf directory > and set this into ADS. The keystore file is valid for 10 years > > I've been able to create 2 new connection with ADS, one ldpas using port > 10636 and one using TLS on port 10389 > all of them connecting with admin user. All seem ok as I can open the > connection using ADS to the remote server > and can navigate on LDAP tree. > > Where my problem is, is that when I try to connect using ldapsearch on the > command line, I cannot connect to the remote > server :( > > So my first question is, are my ADS secured connections really secured?? > > The other question is, could someone light my lantern on such error thrown in > the apacheDS logs: > > [16:40:33] WARN [org.apache.directory.server.ldap.LdapProtocolHandler] - > Unexpected exception forcing session to close: sending disconnect notice to > client. > javax.net.ssl.SSLException: Unsupported record version Unknown-5.2 > at sun.security.ssl.InputRecord.checkRecordVersion(InputRecord.java:552) > at > sun.security.ssl.EngineInputRecord.bytesInCompletePacket(EngineInputRecord.java:113) > at sun.security.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:868) > at sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:781) > at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:624) > ... > [16:40:33] WARN [org.apache.directory.server.ldap.LdapProtocolHandler] - > Unexpected exception forcing session to close: sending disconnect notice to > client. > javax.net.ssl.SSLException: SSLEngine error during encrypt: CLOSED src: > java.nio.HeapByteBuffer[pos=0 lim=81 cap=81]outNetBuffer: HeapBuffer[pos=31 > lim=16921 cap=16921: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 > 00 00 00 00 00...] > at org.apache.mina.filter.ssl.SslHandler.encrypt(SslHandler.java:458) > at org.apache.mina.filter.ssl.SslFilter.filterWrite(SslFilter.java:653) > at > org.apache.mina.core.filterchain.DefaultIoFilterChain.callPreviousFilterWrite(DefaultIoFilterChain.java:753) > at > org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1500(DefaultIoFilterChain.java:49) > at > org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.filterWrite(DefaultIoFilterChain.java:1159) > at > org.apache.mina.filter.codec.ProtocolCodecFilter.filterWrite(ProtocolCodecFilter.java:345) > > What could cause Unknow-5.2 error? > > > > and from ldapsearch command line utility: > > $ ldapsearch -H ldap://host:10389 -D "uid=admin,ou=system" -b > "uid=admin,ou=system" -w password -v -ZZ > ldap_initialize( ldap://host:10389/??base ) > ldap_start_tls: Connect error (-11) > additional info: (unknown error code) > > in debug mode > ... > ldap_msgfree > TLS: peer cert untrusted or revoked (0x42) > TLS: can't connect: (unknown error code). > ldap_err2string > ldap_start_tls: Connect error (-11) > additional info: (unknown error code) > ldap_free_connection 1 1 > ldap_send_unbind > ber_flush2: 7 bytes to sd 3 > ldap_free_connection: actually freed > .... > > Looks like my certificate is revoked (should be valid until 2028) > > Trying ldaps: > > $ ldapsearch -H ldaps://host:10636 -D "uid=admin,ou=system" -b > "uid=admin,ou=system" -v -x > ldap_initialize( ldaps://host:10636/??base ) > ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1) > > > This certificate has been created as such: > > $ keytool -genkey -keyalg "RSA" -alias ldap -keystore ldap.ks -validity 3650 > > I've of course answered the question asked during certificate creation. > > Thanks in advance, since is three days I'm loosing my nerves > > Regards > > -- > Emmanuel Quevillon > DevOps - omicX > https://omicx.com | https://omictools.com > > -- > Emmanuel Quevillon > DevOps - omicX > https://omicx.com | https://omictools.com > > > > > > > > -- > Emmanuel Quevillon > DevOps - omicX > https://omicx.com | https://omictools.com > -- Emmanuel Lecharny Symas.com directory.apache.org
pEpkey.asc
Description: application/pgp-keys
