search

threerings / openvpn-auth-ldap

Implements username/password authentication via LDAP for OpenVPN 2.x.
Other
135 stars 63 forks source link

Bind after STARTTLS #19

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Configuration: Use TLS, don't allow anonymous binds

This will cause the plugin to first perform the bind, then issue STARTTLS,
which will move the LDAP authorization status back to "anonymous" (see
http://tools.ietf.org/html/rfc4513#section-4). If you move the code in
auth-ldap.m, which performs the binding (calling bindWithDN) to the end of
connect_ldap() (just before "return ldap"), everything should work fine.

What version of the product are you using? On what operating system?

I'm using version 2.0.3 on a debian lenny.

Original issue reported on code.google.com by m...@tinloaf.de on 9 Jan 2010 at 7:32

GoogleCodeExporter commented 9 years ago 
Resolved in r1325

Original comment by landon.j.fuller@gmail.com on 25 Feb 2012 at 11:08

GoogleCodeExporter commented 9 years ago 
Issue 28 has been merged into this issue.

Original comment by landon.j.fuller@gmail.com on 25 Feb 2012 at 11:08