Messages

hi all, wanted to know how does config.xml file generate ?

in this address : /conf/config.xml

which command or file generates config.xml file ?
thanks

hi, how can i disable and enable some of the ciphers that are supported by sshd ?
i edit this file:
vim /etc/ssh/sshd_config

and then restart the sshd
service openssh onerestart

and check for supported list of ciphers :
sshd -T | grep ciphers

but nothing changes , how i can change list of supported ciphers?
i asked it somewhere else in this forum too , im in a very hurry , can anyone help me ?

does any one can help?

is there any answere for this i'm in a hurry

hi, how can i disable and enable some of the ciphers that are supported by sshd ?
i edit this file:
vim /etc/ssh/sshd_config

and then restart the sshd
service openssh onerestart

and check for supported list of ciphers :
sshd -T | grep ciphers

but nothing changes , how i can change list of supported ciphers?

trying to use SartTLS to see if it works or nor :|

You should check through all your steps, as I have working SSL and had no issue switching to StartTLS using OPNsense 18.7.

I have been personally using ldaps:// since OPNsense version 15 with no unexpected issues.

Make sure your client url is supported by your certificate on the server as the IP and/or url should be configured in alt names or else it will fail security checks.

cordel may you check your private messages please? i've sent you a private message asking about direct speaking, i need your help indeed ,
thanks

thanks, i'll check the entire of process again, as i did it for 4-5 times before.

honesty, OPNSense is full of un-patched bugs

http://s9.picofile.com/d/8334218126/903a6e02-a042-47b6-ae56-f86e4567acf3/ldap.mp4

trying to use SartTLS to see if it works or nor :|

i followed the following configuration:
https://www.digitalocean.com/community/tutorials/how-to-encrypt-openldap-connections-using-starttls

but it dosen't work either :|||

trying to use SartTLS to see if it works or nor :|

i get the following error:


"LDAP bind error (Can't contact LDAP server)"

thank for the answer, how i can trace the main cause of problem, any detailed log or something related ?

hi, thanks for the answer,
ldap.conf file is all commented with #, is this something normal :


#
# LDAP Defaults
#

# See ldap.conf(5) for details
# This file should be world readable but not world writable.

#BASE   dc=example,dc=com
#URI   ldap://ldap.example.com ldap://ldap-master.example.com:666

#SIZELIMIT   12
#TIMELIMIT   15
#DEREF      never

thank for the answer, how i can trace the main cause of problem, any detailed log or something related ?

no i set fallback as local system and i can login with root local-account, but i need to implement secure LDAP login.
PS:by default TCP-LDAP mode i can authorize and get access, but as i said, i need to implement in secure mode.