[ZendTo] AD SSL issues

Jordack jordack at yahoo.com
Mon Mar 28 20:46:49 BST 2016


I'm not seeing that.  Mine is connecting over 636.
Maybe its failing back to cleartext if SSL fails.
I know with every system I've setup LDAP on it requires setting the CACert in the ldap.conf file
/etc/openldap/ldap.conf
TLS_CACERT      /etc/pki/tls/certs/TrustedRoot2015.pem

 

    On Monday, March 28, 2016 8:11 AM, Brian Novogradac <Brian.Novogradac at utoronto.ca> wrote:
 

  <!--#yiv6055996592 _filtered #yiv6055996592 {font-family:"Cambria Math";panose-1:2 4 5 3 5 4 6 3 2 4;} _filtered #yiv6055996592 {font-family:"Calibri Light";panose-1:2 15 3 2 2 2 4 3 2 4;} _filtered #yiv6055996592 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}#yiv6055996592 #yiv6055996592 p.yiv6055996592MsoNormal, #yiv6055996592 li.yiv6055996592MsoNormal, #yiv6055996592 div.yiv6055996592MsoNormal {margin:0cm;margin-bottom:.0001pt;font-size:11.0pt;font-family:"Calibri", sans-serif;}#yiv6055996592 a:link, #yiv6055996592 span.yiv6055996592MsoHyperlink {color:#0563C1;text-decoration:underline;}#yiv6055996592 a:visited, #yiv6055996592 span.yiv6055996592MsoHyperlinkFollowed {color:#954F72;text-decoration:underline;}#yiv6055996592 span.yiv6055996592EmailStyle17 {font-family:"Calibri", sans-serif;color:windowtext;}#yiv6055996592 .yiv6055996592MsoChpDefault {font-family:"Calibri", sans-serif;} _filtered #yiv6055996592 {margin:72.0pt 72.0pt 72.0pt 72.0pt;}#yiv6055996592 div.yiv6055996592WordSection1 {}-->Hello,    I am having a tough time here hope someone could shed some light.  I have no problem using the application via AD unencrypted 389.  I go to activate using SSL protocol by changing 'authLDAPUseSSL1'           => true.    After a bunch of digging and troubleshooting the application is still trying to use port 389 instead of 636.     Any help appreciated    Brian Novogradac
System Analyst, Computing Services (I&ITS)

University of Toronto at Mississauga
3359 Mississauga Road N.
Mississauga, Ontario, L5L 1C6

(P) 416-435-2543
(F) 905-569-4343
(E) brian.novogradac at utoronto.ca (W)www.utm.utoronto.ca/iits

This E-mail contains privileged and confidential information intended only for the individual or entity named in the message. If the reader of this message is not the intended recipient, or the agent responsible to deliver it to the intended recipient, you are hereby notified that any review, dissemination, distribution or copying of this communication is prohibited.  If this communication was received in error, please notify the sender by reply E-mail immediately, and delete and destroy the original message.    
_______________________________________________
ZendTo mailing list
ZendTo at zend.to
http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20160328/15675007/attachment.html 


More information about the ZendTo mailing list