Red Hat Directory Server and Java and C/C++ client applications TLS connections failed after RHEL 6.7 update with nss-3.21.0-0.3.el6_7.x86_64, DHE cipher params updates

Solution In Progress - Updated -

Issue

After applying a RHEL 6.7 errata update, the NSS component was updated to nss-3.21.0-0.3.el6_7.x86_64, and various Java and C/C++ LDAP client applications cannot connect anymore to the Red Hat Directory Server.
Access log sample:

[07/Apr/2016:11:04:48 -0400] conn=105 fd=117 slot=117 SSL connection from 192.168.10.11 to 192.168.10.10
[07/Apr/2016:11:04:48 -0400] conn=105 op=-1 fd=117 closed - Peer reports it experienced an internal error.

Environment

Red Hat Enterprise 6
Red Hat Enterprise 7
Red Hat Directory Server 9
Red Hat Directory Server 10

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content