Hi, if i try to make it work without SSL and on the 389 it works correctly, but when i enable ssl it says incorrect credentials.
The following is my config:
authc:
basic_internal_auth_domain:
description: “Authenticate via HTTP Basic against internal users database”
http_enabled: true
transport_enabled: true
order: 4
http_authenticator:
type: basic
challenge: true
authentication_backend:
type: intern
ldap:
description: “Authenticate via LDAP or Active Directory”
http_enabled: true
transport_enabled: true
order: 1
http_authenticator:
type: basic
challenge: true
authentication_backend:
type: ldap
config:
enable_ssl: true
pemtrustedcas_filepath: “/etc/ssl/certs/ldap/ca.pem”
enable_start_tls: false
enable_ssl_client_auth: false
verify_hostnames: true
hosts:
- “X.X.X:636”
bind_dn: “CN=X,OU=Service Accounts,OU=Accounts,DC=X,DC=X”
password: “X.”
userbase: “OU=Accounts,dc=X,dc=X”
usersearch: “(sAMAccountName={0})”
username_attribute: “uid”
authz:
roles_from_myldap:
description: “Authorize via LDAP or Active Directory”
http_enabled: true
transport_enabled: true
authorization_backend:
type: ldap
config:
enable_ssl: true
enable_start_tls: false
enable_ssl_client_auth: false
verify_hostnames: true
hosts:
- “X.X.X:636”
bind_dn: “CN=X,OU=Service Accounts,OU=Accounts,DC=X,DC=X”
password: “X.”
userbase: “OU=Accounts,dc=X,dc=X”
usersearch: ‘(uid={0})’
username_attribute: uid
rolebase: “OU=X,dc=X,dc=X”
rolesearch: ‘(member={0})’
userroleattribute: null
resolve_nested_roles: true
Also, where can i find the ldap error log?
Regards,
Daniel D.