search

OCSInventory-NG / OCSInventory-ocsreports

Webconsole for OCS Inventory NG
https://www.ocsinventory-ng.org
GNU General Public License v2.0
232 stars 151 forks source link

[BUG] unable to enable LDAPS #1557

Closed jdbonase closed 11 months ago

jdbonase commented 1 year ago

OCS Inventory version Version : 2.10.0

Describe the bug After successfully enabling LDAP authentication, I am unable to enable LDAPS by changing the port to 636 and the server URI from ldap:// to ldaps:// . The ldaps URI works as expected with the ldapsearch utility so I believe the root CA is properly configured. Using tcpdump, I do see traffic from the OCS server to Active Directory.

Expected behavior User should be authenticated as when using LDAP without encryption.

Log file (optional) /var/log/php-fpm/www-error.log
ldap_bind(): Unable to bind to server: Can't contact LDAP server in ...ldap.php on line 143

Lea9250 commented 1 year ago

Hi @jdbonase,

Taking a look at your LDAP server logs could help narrowing down the issue. What version of PHP are you running on the OCS server ? Is the certificate properly configured in /etc/ldap/ldap.conf ?

Regards, Léa

jdbonase commented 1 year ago

Lea,

I have moved on to a new opportunity however I have forwarded your questions to my replacement.

Thanks,

Jim

From: Lea9250 @.> Sent: Thursday, October 5, 2023 4:48 AM To: OCSInventory-NG/OCSInventory-ocsreports @.> Cc: Bonasera, James D (US) @.>; Mention @.> Subject: EXTERNAL: Re: [OCSInventory-NG/OCSInventory-ocsreports] [BUG] unable to enable LDAPS (Issue #1557)

Hi @jdbonasehttps://github.com/jdbonase,

Taking a look at your LDAP server logs could help narrowing down the issue. What version of PHP are you running on the OCS server ? Is the certificate properly configured in /etc/ldap/ldap.conf ?

Regards, Léa

— Reply to this email directly, view it on GitHubhttps://github.com/OCSInventory-NG/OCSInventory-ocsreports/issues/1557#issuecomment-1748400586, or unsubscribehttps://github.com/notifications/unsubscribe-auth/BCM2YPV6YYYMDUY2MGYHRPLX5ZX2LAVCNFSM6AAAAAA4OA7QNOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTONBYGQYDANJYGY. You are receiving this because you were mentioned.Message ID: @.**@.>>

Lea9250 commented 11 months ago

Hi,

Since there was no update on this matter, I'll close the issue. Feel free to reopen if the issue persist.

Best regards, Léa