ldap_bind() files if using a custom CA

XMLWordPrintable

    • Type: Incident report
    • Resolution: Duplicate
    • Priority: Major
    • None
    • Affects Version/s: 2.4.5
    • Component/s: Frontend (F)
    • Environment:
      FreeBSD 10.1-RELEASE
      php56-5.6.10

      1. Update ldap.conf to specify the custom CA dir.
      2. Run c_rehash if necessary to create a proper hashed CA dir.
      3. Setup Authentication in Frontend
      4. Test auth, fails to bind.

      Note: ldapsearch with bind works from CLI.

      This affects FreeBSD but not linux.

      Exact Error

      ldap_bind(): Unable to bind to server: Can't contact LDAP server [authentication.php:120 ? CLdapAuthValidator->validate() ? CLdap->checkPass() ? ldap_bind() in /usr/local/www/zabbix24/include/classes/ldap/CLdap.php:112]
LDAP: cannot bind by given Bind DN.
Login name or password is incorrect!

      I have set the openssl.capath in the php-fpm.conf file and restarted php-fpm without any change in action.

      I also set it in the php.ini file as well.

      Related to: ZBX-9096 ZBX-9350

            Assignee:
            Unassigned
            Reporter:
            Ronald Valente
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: