Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - dsvfhiubfdg

Pages1
#1
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
May 14, 2025, 04:56:02 PM
Quote from: dsvfhiubfdg on April 14, 2025, 12:47:34 PMits not a new deployment, its already used in production on older 24.7 releases.

I planed to upgrade and thats the point where i cant because of an update that bricked something, and i am not alone.

With no encryption I cannot reproduce the problem with our test ldap, hopefully it is clear that you should not use it productively, the productive ldap is LDAPS only.



with LDAPS im getting exactly the same on our testing LDAP which speaks LDAPS as well as LDAP.
2025-04-14T10:46:48    Error    opnsense    LDAP bind error [; Can't contact LDAP server]

What do i need to provide so we can debug this more?


Hello,

is any one able to reproduce this by connecting with an LDAP Server using LDAPS (SSL)?
The LDAPS Server is using an Letsencrypt certificate, which is under the defaults of the OS (it was with OPNSense 24.7), i just added the CAs manually into the OPNsense Trust part, didnt change anything. i only get a working connection using no encryption, which is disabled on the production environment.

Else i may start opening a issue, since i guess its not only me.
#2
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
April 14, 2025, 12:47:34 PM
its not a new deployment, its already used in production on older 24.7 releases.

I planed to upgrade and thats the point where i cant because of an update that bricked something, and i am not alone.

With no encryption I cannot reproduce the problem with our test ldap, hopefully it is clear that you should not use it productively, the productive ldap is LDAPS only.



with LDAPS im getting exactly the same on our testing LDAP which speaks LDAPS as well as LDAP.
2025-04-14T10:46:48    Error    opnsense    LDAP bind error [; Can't contact LDAP server]

What do i need to provide so we can debug this more?
#3
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
April 10, 2025, 02:59:25 PM
Quote from: Patrick M. Hausen on April 03, 2025, 04:21:40 PMI know of no directory that uses uid= in a distinguished name. What directory is this? Active Directory uses cn=xyz,ou=...,dc=domain,dc=com. Hence my suggestion.
Quote from: passeri on April 04, 2025, 12:16:23 AMThe documentation uses cn=


its rfc2307bis openldap (slapd) and I think I know best which DN my binduser uses in LDAP, it's not as if opnsense is the first software to be connected via it.
#4
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
April 03, 2025, 03:58:00 PM
well thats wrong, since thats not the bind dn, why should that work, older opnsense versions work with exact same settings. thats not a fix.
#5
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
April 02, 2025, 04:11:31 PM
like that: `uid=testing-binder,ou=bindUsers,dc=somename,dc=net`

#6
25.1, 25.4 Series / Re: OpenVPN 25.1 -> LDAP bind error [; Can't contact LDAP server] after upgrade.
March 26, 2025, 12:49:02 PM
i have the same issue...
Pages1