Open sdimovv opened 2 years ago
I'm facing similar issue, except mine error is unsupported_protocol
[20:54:50] [ERR] [17] Jellyfin.Plugin.LDAP_Auth.LdapAuthenticationProviderPlugin: Failed to Connect or Bind to server
System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
---> Interop+OpenSsl+SslException: SSL Handshake failed with OpenSSL error - SSL_ERROR_SSL.
---> Interop+Crypto+OpenSslCryptographicException: error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol
--- End of inner exception stack trace ---
at Interop.OpenSsl.DoSslHandshake(SafeSslHandle context, ReadOnlySpan`1 input, Byte[]& sendBuf, Int32& sendCount)
at System.Net.Security.SslStreamPal.HandshakeInternal(SafeFreeCredentials credential, SafeDeleteSslContext& context, ReadOnlySpan`1 inputBuffer, Byte[]& outputBuffer, SslAuthenticationOptions sslAuthenticationOptions)
--- End of inner exception stack trace ---
at Novell.Directory.Ldap.AsyncExtensions.WaitAndUnwrap(Task task, Int32 timeout)
at Novell.Directory.Ldap.Connection.Connect(String host, Int32 port, Int32 semaphoreId)
at Novell.Directory.Ldap.Connection.Connect(String host, Int32 port)
at Novell.Directory.Ldap.LdapConnection.Connect(String host, Int32 port)
at Jellyfin.Plugin.LDAP_Auth.LdapAuthenticationProviderPlugin.LocateLdapUser(String username)
I'm also using OpenSSL 1.0.2 on LDAP host and 1.1.1 on Jellyfin Host
I've tried v12.0 and v14.0 both not working.
Hi,
I am trying to get Jellyfin use the Synology LDAP server as authentication provider.
The setup is as follows: LDAP Server:
Jellyfin:
If I configure the LDAP plugin to connect without SSL - everything works. I can login by using user credentials stored in the LDAP server.
However, if I select the "Secure LDAP" checkbox it saves fine, but I cannot login using LDAP stored credentials.
At first I thought this is because the SSL/TLS Verification fails (because I am using a local IP while the SSL cert is issued to the server domain), so I checked the "Skip SSL/TLS Verification" box as well - still nothing.
I then tried manually adding an entry to the
hosts
file of the running docker container:Still nothing with or without the "Skip SSL/TLS Verification" option.
Finally with the following setup:
/etc/hosts
modified to redirect the cert domain to the local IPI read the logs, and this is the error:
How can I fix this?
Edit: Just noticed the OpenSSL versions of the Synology server and Jellyfin container are quite different (1.0.2 vs 1.1.1). Could that be causing it?