Project

General

Profile

Bug #7830

LDAP authentication fails using SSL with intermediate certificates

Added by Jim Pingle over 2 years ago. Updated about 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
User Manager / Privileges
Target version:
Start date:
08/30/2017
Due date:
% Done:

100%

Estimated time:
Affected Version:
2.4
Affected Architecture:
All

Description

When attempting authentication against and LDAP server using SSL/TLS, attempts to bind to the server fail if the server's trust chain includes multiple certificates (e.g. CA+Intermediate)

To me, I have a fix.

Associated revisions

Revision ff500c90 (diff)
Added by Jim Pingle over 2 years ago

Use the full CA chain when sending an LDAP SSL query. Fixes #7830
While here, fix a couple more ldap_start_tls() calls that need a preceding @.

Revision 389020e3 (diff)
Added by Jim Pingle over 2 years ago

Use the full CA chain when sending an LDAP SSL query. Fixes #7830
While here, fix a couple more ldap_start_tls() calls that need a preceding @.

(cherry picked from commit ff500c90646c8db5abe77d7efb02c7d191df6902)

History

#1 Updated by Jim Pingle over 2 years ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100

#2 Updated by Jim Pingle about 2 years ago

  • Status changed from Feedback to Resolved

Works now

Also available in: Atom PDF