[ZendTo] News — Microsoft enforcing LDAPS for AD servers

Scott Silva ssilva at sgvwater.com
Mon Feb 10 17:37:47 GMT 2020


Running on Redhat 7

Made changes to /etc/openldap/ldap.conf
Made changes to preferences.php
Get login error
	LDAP Error
	Check User: Unable to connect to any of the authentication servers; could not authenticate user. Please notify the system administrator.
	Authentication Error
	The username or password was incorrect.
Found I did not have gnutls installed, and thought it might be required. Not sure how else to test...
Maybe a list of packages that might be required?



From: ZendTo <zendto-bounces at zend.to> On Behalf Of Jules via ZendTo
Sent: Saturday, February 8, 2020 9:29 AM
To: ZendTo Users <zendto at zend.to>
Cc: Jules <Jules at Zend.To>
Subject: [ZendTo] News — Microsoft enforcing LDAPS for AD servers

Microsoft are about to enforce the use of LDAPS (removing unencrypted LDAP) when checking user credentials against an AD server.

This needs a couple of minor changes to your ZendTo server.

I have written up some simple instructions here
    https://zend.to/activedirectory.php
which certainly appear to work for me.

I strongly advise you make the changes and test the resulting service before Microsoft release the patch that enforces the need for this. It should cause no harm except to improve the security of communications between ZendTo and your AD server.

Any comments / problems / questions, please do let me know straightaway!

Cheers,

Jules

-- 
Julian Field MEng CEng CITP MBCS MIEEE MACM

The current UK shipping forecast:
Irish Sea: Southwest 4 or 5, becoming cyclonic 6 to gale 8, then north 4 to 6.
Slight or moderate, occasionally rough in south. Rain. Good, occasionally
poor.

http://www.Zend.To
Twitter: @JulesFM


More information about the ZendTo mailing list