Project

General

Profile

Tâche #30997

Scénario #30106: Implémenter la délégation d'authentification sur Scribe 2.8.0 avec un AD distant

Le certificat utilisé pour la validation de la connexion LDAPS ne tient pas compte de l’utilisation du certificat de la machine

Added by Benjamin Bohard 11 months ago. Updated 11 months ago.

Status:
Fermé
Priority:
Normal
Assigned To:
Start date:
10/19/2020
Due date:
% Done:

100%

Remaining (hours):
0.0

Associated revisions

Revision 0f7f66ed (diff)
Added by Benjamin Bohard 11 months ago

Default certificate is no longer /var/lib/samba/private/tls/ca.pem

Using /etc/ssl/certs/ca.crt instead considering it contains all
usefull certificates.
Considering also saslauth is never used on a server where ad_domain is
not assigned

Ref #30997

Revision 56853fe0 (diff)
Added by Benjamin Bohard 11 months ago

Typo in certificate path.

Ref #30997

History

#1 Updated by Benjamin Bohard 11 months ago

  • Status changed from Nouveau to En cours

#2 Updated by Benjamin Bohard 11 months ago

  • Status changed from En cours to Résolu

#3 Updated by Emmanuel GARETTE 11 months ago

  • Assigned To set to Benjamin Bohard
  • % Done changed from 0 to 100

#4 Updated by Joël Cuissinat 11 months ago

  • Status changed from Résolu to Fermé
  • Remaining (hours) set to 0.0

Vu.

En résumé :
  • dans le cas ScribeAD 2.8 : /etc/ssl/certs/ca.crt
  • dans le cas Eole-AD 2.8 : %%sasl_ldap_auth_cacert

Also available in: Atom PDF