MantisBT - TestLink
View Issue Details
0008505TestLinkLDAP authenticationpublic2018-12-14 09:092018-12-14 09:09
maykel535 
 
highblockalways
newopen 
bitnamiubuntu16.04
1.9.18 (2018 Q3) 
 
MySQL
chrome
5.5.25
0008505: ldap authentication tls cert not working
I have configured authentication ldap:

$tlCfg->authentication['method'] = 'LDAP';

$tlCfg->authentication['ldap'] = array();
$tlCfg->authentication['ldap'][1]['ldap_server'] = 'ldap.example.com';
$tlCfg->authentication['ldap'][1]['ldap_port'] = '389';
$tlCfg->authentication['ldap'][1]['ldap_version'] = '13'; // could be '2' in some cases
$tlCfg->authentication['ldap'][1]['ldap_root_dn'] = 'dc=example,dc=com';
$tlCfg->authentication['ldap'][1]['ldap_bind_dn'] = 'cn=admin,dc=example,dc=com'; // Left empty for anonymous LDAP binding
$tlCfg->authentication['ldap'][1]['ldap_bind_passwd'] = 'mypass'; // Left empty for anonymous LDAP binding
$tlCfg->authentication['ldap'][1]['ldap_tls'] = true; // true -> use tls


And, when I try log with user received this error:

ldap_start_tls(): Unable to start TLS: Connect error - in /opt/bitnami/apps/testlink/htdocs/lib/functions/ldap_api.php - Line 65
[<<][5c137053b67ce156879038][DEFAULT][/login.php][18/Dec/14 08:56:51][18/Dec/14 08:56:51][took 0.077271 secs

Try add in /etc/ldap/ldap.conf this line:

TLS_CACERT /etc/ldap/ca_certs.pem

TLS_REQCERT never

But not working anyway.
Enter url testlink and check login user.
Check log openldap:

Dec 14 10:09:07 ldap slapd[365]: conn=1318503 fd=48 ACCEPT from IP=x.x.x.x:55689 (IP=0.0.0.0:389)
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 op=0 EXT oid=1.3.6.1.4.1.1466.20037
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 op=0 STARTTLS
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 op=0 RESULT oid= err=0 text=
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 fd=48 TLS established tls_ssf=256 ssf=256
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 op=1 UNBIND
Dec 14 10:09:07 ldap slapd[365]: conn=1318503 fd=48 closed
No tags attached.
Issue History
2018-12-14 09:09maykel535New Issue

There are no notes attached to this issue.