Open dom6770 opened 5 months ago
LDAP Port
The UCS LDAP service can be reached via ports 7389 (unsecure) and 7636 (TLS encrypted). The UCS LDAP service has two dedicated ports:
Port 7389 (unsecure)
Port 7636 (TLS encrypted)
The unsecure port seems to work, but the TLS port not. When I use the encrypted port and TLS I get
You have errors in your form. The invalid fields are marked.
pointing to the hostname filed, when I select SSL I only get
Failed to query user for authentication: ldap_search(): Search: Can't contact LDAP server
. In both cases "Verify SSL certicate" is enabled. I even tried to build my own image which imports the UCS CA without any luck.
Is the server using a valid certificate? I noticed it will report that message also when TLS fails:
See also: https://serverfault.com/questions/628777/cant-contact-ldap-server-with-ldaps-in-docker
We're currently trying to migrate our bare-metal installation of Group Office to a docker container. So far, everythings works except LDAP. It's 1:1 the same configuration as in our working non-docker instance, but yet in docker it says "Can't contact LDAP server", which is weird.
By installing ping and telnet inside the docker container, I can ping kerberos.example.intern, and telnet kerberos.example.internet 7363 without any issue. We use Univention LDAP.