Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-9653

ldap_bind() files if using a custom CA

XMLWordPrintable

    • Icon: Incident report Incident report
    • Resolution: Duplicate
    • Icon: Major Major
    • None
    • 2.4.5
    • Frontend (F)
    • FreeBSD 10.1-RELEASE
      php56-5.6.10

      1. Update ldap.conf to specify the custom CA dir.
      2. Run c_rehash if necessary to create a proper hashed CA dir.
      3. Setup Authentication in Frontend
      4. Test auth, fails to bind.

      Note: ldapsearch with bind works from CLI.

      This affects FreeBSD but not linux.

      Exact Error

      ldap_bind(): Unable to bind to server: Can't contact LDAP server [authentication.php:120 ? CLdapAuthValidator->validate() ? CLdap->checkPass() ? ldap_bind() in /usr/local/www/zabbix24/include/classes/ldap/CLdap.php:112]
LDAP: cannot bind by given Bind DN.
Login name or password is incorrect!

      I have set the openssl.capath in the php-fpm.conf file and restarted php-fpm without any change in action.

      I also set it in the php.ini file as well.

      Related to: ZBX-9096 ZBX-9350

            Unassigned Unassigned
            ZoanthusR Ronald Valente
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: