ldaps Cannot connect but not error message

Moderator: crythias

Locked
kmast
Znuny newbie
Posts: 10
Joined: 18 Feb 2016, 18:20
Znuny Version: 5.0.6

ldaps Cannot connect but not error message

Post by kmast »

Hello.

I am trying to use ldaps with OTRS, but am getting an error with no error message:

Code: Select all

ERROR: OTRS-CGI-54 Perl: 5.16.3 OS: linux Time: Fri Mar 11 13:58:54 2016

 Message: Can't connect to ldaps://(myserver)/:
Here is my Config.pm, and I had this working with a local ldap server, trying to set it up now with a remote ldap over ldaps:

Code: Select all

  # agent data sync against ldap
   $Self->{'AuthModule::UseSyncBackend'} = 'AuthSyncBackend';
   $Self->{'AuthSyncModule'} = 'Kernel::System::Auth::Sync::LDAP';
   $Self->{'AuthSyncModule::LDAP::Host'} = 'ldaps://(myserver)';
   $Self->{'AuthSyncModule::LDAP::BaseDN'} = 'ou=agent,ou=people,dc=ufl,dc=org';
   $Self->{'AuthSyncModule::LDAP::UID'} = 'uid';
   $Self->{'AuthSyncModule::LDAP::SearchUserDN'} = 'cn=root,dc=ufl,dc=org';
   $Self->{'AuthSyncModule::LDAP::SearchUserPw'} = '(mypass)';
   $Self->{'AuthSyncModule::LDAP::UserSyncMap'} = {
       # DB -> LDAP
       UserFirstname => 'givenName',
       UserLastname  => 'sn',
       UserEmail     => 'mail',
   };

   # AuthSyncModule::LDAP::UserSyncInitialGroups
   # (sync following group with rw permission after initial create of first agent
   # login)
   $Self->{'AuthSyncModule::LDAP::UserSyncInitialGroups'} = [
       'users',
   ];

   # This is an example configuration for an LDAP auth. backend.
   # (Make sure Net::LDAP is installed!)
   $Self->{'AuthModule'} = 'Kernel::System::Auth::LDAP';
   $Self->{'AuthModule::LDAP::Host'} = 'ldaps://(myserver)';
   $Self->{'AuthModule::LDAP::BaseDN'} = 'dc=ufl,dc=org';
   $Self->{'AuthModule::LDAP::UID'} = 'uid';

   # for ldap posixGroups objectclass (just uid)
   $Self->{'AuthModule::LDAP::UserAttr'} = 'uid';

   # The following is valid but would only be necessary if the
   # anonymous user do NOT have permission to read from the LDAP tree
   $Self->{'AuthModule::LDAP::SearchUserDN'} = 'cn=root,dc=ufl,dc=org';
   $Self->{'AuthModule::LDAP::SearchUserPw'} = '(mypass)';

    # Net::LDAP new params (if needed - for more info see perldoc Net::LDAP)
    $Self->{'AuthModule::LDAP::Params'} = {
        verify => 'require',
        port    => 636,
        timeout => 120,
        async   => 0,
        version => 3,
        sscope => 'sub',
        cafile => '/etc/openldap/certs/cacert.pem',
    };

I am able to run ldapsearch and such against the remote ldap using ldaps and the same DN / User, as well as with anon user. Not sure where to go here since the error message is just ":"....
Top
reneeb
Znuny guru
Posts: 5018
Joined: 13 Mar 2011, 09:54
Znuny Version: 6.0.x
Real Name: Renée Bäcker
Company: Perl-Services.de
Contact:
Contact reneeb

Re: ldaps Cannot connect but not error message

Post by reneeb »

Host ist only the hostname - without "ldaps://"
Perl / Znuny development: http://perl-services.de
Free Znuny add ons from the community: http://opar.perl-services.de
Commercial add ons: http://feature-addons.de
Top
kmast
Znuny newbie
Posts: 10
Joined: 18 Feb 2016, 18:20
Znuny Version: 5.0.6

Re: ldaps Cannot connect but not error message

Post by kmast »

reneeb wrote:Host ist only the hostname - without "ldaps://"
I tried it that way and with the IP and am having the same result. I can ping, do ldapsearches etc...

OTRS-CGI-54[4485]: [Error][Kernel::System::Auth::LDAP::Auth][Line:174]: Can't connect to (myip):

Still no error message though.
Top
Locked

Return to “Help”