On 13-08-27 1:43 PM, Christian Rößner wrote:
Aug 27 18:50:07 sogod [19791]: [ERROR] <0x0x7f2526818480[LDAPSource]> Could not
bind to the LDAP server bordergw.deltaweb.de (389) using the bind DN:
cn=proxyuser,dc=deltaweb,dc=de
Aug 27 18:50:07 sogod [19791]: [ERROR] <0x0x7f2526818480[LDAPSource]>
<NSException: 0x7f252697a1d0> NAME:LDAPException REASON:operation startTLS failed:
Connect error (0xFFFFFFF5) INFO:(null)
This looks like a certificate error.
Trying to contact the LDAP server directly from the command line:
ldapsearch -ZZ -h bordergw.deltaweb.de -xWD "cn=proxyuser,dc=deltaweb,dc=de" -b
"ou=wl,dc=deltaweb,dc=de"
Works perfectly.
So at the moment I do not know where to look for the mistake I did. The LDAP server
certificate is brand new (CAcert). The CA is also included into
/etc/ssl/certs/ca-certificates.crt, so I "guess" SOGo should have a chance to
validate the server certificate. At least ldapsearch with a valid ldaprc works.
What's the content of the ldaprc file?
Do you have the same in /etc/ldap/ldap.conf? (wherever it is on your system)
TLS_CACERT should be set to /etc/ssl/certs/ca-certificates.crt. Just for "fun",
can you set TLS_REQCERT=never in the global ldap.conf and see if the connection
works?
Any suggestions here? Would be so cool, if that worked
--
users@sogo.nu
https://inverse.ca/sogo/lists