I tried to setup LDAP auth with SSL on my cobbler server, per the wiki
instructions at:
https://github.com/cobbler/cobbler/wiki/Ldap
I was able to get LDAP auth *without* SSL working.
However, when I enable SSL, I get the error "Bad file descriptor" in
cobbler.log. I found an existing issue documented at:
https://github.com/cobbler/cobbler/issues/217
I messed around with the config a bunch, and did find a working
configuration with TLS:
1. use port 389
2. use ldap_tls = 1
But as far as I can tell, there is no way to use port 636 -- I tried it
with "ldap_tls" both 0 and 1. I either get "Bad file descriptor" or
"Can't contact LDAP server".
I'd like to use 636 because it ensures SSL or TLS is being used --
whereas port 389 will allow cleartext if the client is not configured
correctly. Is there are a way to do that?
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Robert Jacobson [email protected]
Lead System Admin Solar Dynamics Observatory (SDO)
Bldg 14, E222 (301) 286-1591
_______________________________________________
cobbler mailing list
[email protected]
https://lists.fedorahosted.org/mailman/listinfo/cobbler
