search

lvps / 389ds-server

Ansible role to configure 389DS
Apache License 2.0
23 stars 14 forks source link

Configure nsslapd-localssf when LDAPI is enabled #19

Closed lvps closed 9 months ago

lvps commented 3 years ago

LDAPI + high minssf = cannot connect However, if nsslapd-localssf > minssf, 389DS will accept LDAPI connections. See section 3.1.1.112 here.

jon4hz commented 9 months ago

Hey @lvps

First of all, thanks a lot for this ansible role. It makes the 389ds setup so much easier.

I just stumbled on this exact error and wasted quite a bit of time in debugging before I saw this issue. What do you think about setting this value by default, so it's always the same as the nsslapd-minssf value?

lvps commented 9 months ago

That's probably the best way, I cannot think of any downside compared to current behavior. If you want to implement it, you can send me a pull request. Thanks