Actions
Bug #2530
closed
Having LDAP enabled in User Manager prevents IPSec from working
Status:
Closed
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
-
Start date:
06/29/2012
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1
Affected Architecture:
Description
I had a LDAP (Active Directory) server defined in User Manager, which prevented racoon from working:
Jun 30 00:43:47 racoon: ERROR: fatal parse failure (1 errors) Jun 30 00:43:47 racoon: ERROR: /var/etc/racoon.conf:14: "ldapcfg" racoon not configured with --with-libldap Jun 30 00:43:47 racoon: INFO: Reading configuration from "/var/etc/racoon.conf" Jun 30 00:43:47 racoon: INFO: @(#)This product linked OpenSSL 0.9.8q 2 Dec 2010 (http://www.openssl.org/) Jun 30 00:43:47 racoon: INFO: @(#)ipsec-tools 0.8.0 (http://ipsec-tools.sourceforge.net)
/var/etc/racoon.conf contained this:
ldapcfg {
version 3;
host "";
port 389;
base "";
subtree on;
bind_dn "";
bind_pw "";
attr_user "";
}
I do not have Mobile clients enabled (the only IPSec connection I'm using is a site-to-site connection with static key).
The problem affects current snapshots (currently I'm using 2.1-BETA0 (amd64) built on Thu Jun 28 19:40:31 EDT 2012), but the error has been there at least for a week).
Updated by Jim Pingle over 12 years ago
- Status changed from New to Closed
We are transitioning that to script-based auth rather than relying on racoon's built-in LDAP functions. The work is just not complete yet.
It's part of ticket #1112 - once the code you're seeing is removed in favor of the script method from that ticket, it will work properly again.
Actions