Re: [EXT] RE: ldap proxy

4 Feb 2025


      I am using both 2.5 and 2.6 also and I get the same results.
TLS options are duplicated in the slapd.conf file.
slapd.conf on proxy server:
[...]
# TLS
TLSCACertificateFile  /etc/openldap/certs/ca-bundle.crt
TLSCertificateFile   /etc/openldap/certs/server.crt
TLSCertificateKeyFile /etc/openldap/certs/server.key
TLSCipherSuite         HIGH
TLSVerifyClient        demand
Database        ldap
suffix          dc=test,dc=com
uri             ldaps://mytest.com:636
idassert-bind
   mode=self
   bindmethod=sasl
   saslmech=EXTERNAL
   tls_cert=/etc/openldap/certs/server.crt
   tls_key=/etc/openldap/certs/server.key
   tls_cacert=/etc/ssl/certs/ca-bundle.crt
   tls_cacertdir=/etc/ssl/certs
   tls_crlcheck=none
   tls_reqcert=allow
[...]

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: [EXT] RE: ldap proxy