Profile Photo
We are currently using Elytron LDAPS support to authenticate against Active Directory. Unfortunately there currently seems to be no way to do site aware LDAPS because of two reasons Active Directory only adds SRV records for LDAP, but not for LDAPS the Java LDAP support includes support for SRV records but not for site awareness For Java 12+… (Show more)
in WildFly
Profile Photo
After migrating to Java 11 we were suddenly seeing a lot of caught exceptions in sun.rmi.runtime.Log#getSource(), see https://bugs.openjdk.java.net/browse/JDK-8230058.   Apparently somewhere in Java 9 a distinction between system loggers and user loggers was introduced. See java.util.logging.Logger.SystemLoggerHelper   The WildFly logging… (Show more)
in WildFly
Profile Photo
It is our understanding that the Elytron LDAP realm currently does not do StartTLS. Currently we use LDAPS to avoid sending passwords in plaintext over the wire. However we would prefer LDAP + StartTLS over LDAPS because Active Directory provides SRV records only for LDAP and not for LDAPS. Therefore the URL ldaps:///dc=example,dc=com only works… (Show more)
in WildFly