Connection reset errors when using Java 8 and synchronising with Active Directory over port 636

Still need help?

The Atlassian Community is here for you.

Ask the community

Platform Notice: Server and Data Center Only - This article only applies to Atlassian products on the server and data center platforms.

Problem

When trying to synchronize to an Active Directory 2012r2 user directory, the sync fails with a 'Connection reset' error.

The following appears in the atlassian-confluence.log

2015-09-21 08:37:48,999 ERROR [http-nio-443-exec-18] [[Standalone].[localhost].[/].[action]] log Servlet.service() for servlet [action] in context with path [] threw exception
org.springframework.ldap.CommunicationException: <server>; nested exception is javax.naming.CommunicationException: <server> [Root exception is java.net.SocketException: Connection reset]
	at org.springframework.ldap.support.LdapUtils.convertLdapException(LdapUtils.java:108)
	at org.springframework.ldap.core.support.AbstractContextSource.createContext(AbstractContextSource.java:356)
	at org.springframework.ldap.core.support.AbstractContextSource.doGetContext(AbstractContextSource.java:140)
	at org.springframework.ldap.core.support.AbstractContextSource.getReadWriteContext(AbstractContextSource.java:175)
	at org.springframework.ldap.transaction.compensating.manager.TransactionAwareContextSourceProxy.getReadWriteContext(TransactionAwareContextSourceProxy.java:88)
	at org.springframework.ldap.transaction.compensating.manager.TransactionAwareContextSourceProxy.getReadOnlyContext(TransactionAwareContextSourceProxy.java:61)
at org.springframework.ldap.core.LdapTemplate.executeReadOnly(LdapTemplate.java:802)
	at org.springframework.ldap.core.LdapTemplate.lookup(LdapTemplate.java:935)

...
Caused by: javax.naming.CommunicationException: <server> [Root exception is java.net.SocketException: Connection reset]

Diagnosis

Environment

Cause

There are known issues with Java 8 and TLSv1.2 causing "Connection Reset" errors when attempting to connect.

Workaround

Add the following Java argument to force connecting using TLSv1.0. For details on setting Java properties and options on startup for Confluence, see Configuring System Properties.


-Djdk.tls.client.protocols=TLSv1



Description

When trying to synchronize to an Active Directory 2012r2 user directory, the sync fails with a 'Connection reset' error.

ProductConfluence
PlatformServer
Last modified on Nov 1, 2018

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.