We have a scenario in which we'd like to configure a WebLogic 8.1 server (running on Windows, JRockit 1.4.2) to connect to Active Directory over SSL for authentication. Our Active Directory is configured for SSL with a Root CA and Subordinate CA that have 4096-bit keys. We found this was unsupported in that version of the JRE, so we tried configuring BouncyCastle as the security provider, as it supports that keylength. We've been able to configure an SSL certificate from the same CA hierarchy, and it's able to load that (we can connect via SSL with no problem). However, when we enable SSL for Active Directory, we get an error.
Has anyone else tried running WebLogic with this configuration, or using BouncyCastle to support large keysizes, in general?
