Needed to apply a patch in order to ensure STARTTLS completes before binding.

This update has been submitted for testing by seancallaway.

2 years ago
BZ#1489559 openvpn LDAP plugin binds before StartTLS

This update has been pushed to testing.

2 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for batched by seancallaway.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago
User Icon anonymous commented & provided feedback 2 years ago

Using this update, I'm no longer able to bind to the LDAP server. Note that I'm using LDAPS directly and not startTLS. Hence, the authentication fails.

User Icon anonymous commented & provided feedback 2 years ago

I actually found that the issue was due to a wrong TLSCACertFile option.


Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1489559 openvpn LDAP plugin binds before StartTLS
0
1

Automated Test Results