--On Thursday, June 27, 2019 11:51 PM +0200 Abdelkader Chelouah a.chelouah@gmail.com wrote:
I tried with with
olcDbStartTLS: ldaps
with no success.
Logs on the proxy
2019-06-27T20:46:07.602925+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 fd=11 ACCEPT from IP=[::1]:46462 (IP=[::1]:10020) 2019-06-27T20:46:07.603476+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 op=0 BIND dn="uid=alice,ou=people,dc=local" method=128 2019-06-27T20:46:07.609212+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 op=0 ldap_back_retry: retrying URI="ldaps://arrakis.local:10011" DN="" 2019-06-27T20:46:07.613435+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 op=0 RESULT tag=97 err=52 text=Proxy operation retry failed 2019-06-27T20:46:07.613968+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 op=1 UNBIND 2019-06-27T20:46:07.614264+00:00 arrakis slapd-2.4-bb[17262]: conn=1001 fd=11 closed
Logs on the backend ldap server
2019-06-27T20:46:07.609971+00:00 arrakis slapd-2.4-aa[14682]: conn=1011 fd=12 ACCEPT from IP=172.18.0.2:47156 (IP=172.18.0.2:10011) 2019-06-27T20:46:07.613718+00:00 arrakis slapd-2.4-aa[14682]: conn=1011 fd=12 closed (TLS negotiation failure)
Thanks! Please include the openldap-its list in your replies so that they properly get associated with the relevant ITS. I'll raise this up as a priority for the 2.4.48 release.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com