Ldap over SSL (LDAPS) without hostname verification

Hi all,

I am trying to configure the LdapIdentityProviderPlugin with a ldaps connection.
After having updated the keystore, I got this error:

java.security.cert.CertificateException: No name matching […] found

The certificate of the server doesn’t match its hostname.

Unfortunately, I can’t update the certificate of the ldap server. Is there a way to disable the hostname verification?

Thanks,
Dario

Hi @dar88rm, could you please elaborate and tell if you found the solution?

This can be solved by following JAVA_OPTS while starting Camunda :

-Dcom.sun.jndi.ldap.object.disableEndpointIdentification=true

I know this is an old thread but sharing if this may help someone in future.