[Moin-user] Does LDAPAuth support ldaps? (with self-signed certs)
Matthew Franz
mdfranz at gmail.com
Mon Dec 8 16:11:00 EST 2008
Actually my previous "success" (damn wikiconfig.pyc from when I was
using stunnel) was premature
Using ldap://host and start_tls=2 (or 1)
2008-12-08 15:53:14,614 WARNING MoinMoin.auth.ldap_login:158 Couldn't
establish TLS to 'ldap://a.b.c.d.com' (err: {'info': '', 'desc':
'Connect error'}).
2008-12-08 15:53:14,614 ERROR MoinMoin.auth.ldap_login:249 caught an
exception, traceback follows...
Traceback (most recent call last):
File "/usr/lib/python2.4/site-packages/MoinMoin/auth/ldap_login.py",
line 155, in login
l.start_tls_s()
File "/usr/lib/python2.4/site-packages/ldap/ldapobject.py", line
505, in start_tls_s
return self._ldap_call(self._l.start_tls_s)
File "/usr/lib/python2.4/site-packages/ldap/ldapobject.py", line 94,
in _ldap_call
result = func(*args,**kwargs)
CONNECT_ERROR: {'info': '', 'desc': 'Connect error'}
And ldaps: with start_tls=0
2008-12-08 16:05:41,113 ERROR MoinMoin.auth.ldap_login:244 LDAP server
ldaps://a.b.c.d.com failed ({'desc': "Can't contact LDAP server"}).
Trying to authenticate with next auth list entry.
On Mon, Dec 8, 2008 at 3:22 AM, Thomas Waldmann <tw-public at gmx.de> wrote:
> Decide whether you want TLS or SSL.
>
> use ldaps://server:636 url for ldaps,
> use ldap://server for ldap with tls (and set start_tls to 1 or 2).
>
> Cheers,
>
> Thomas
>
>
>
> ------------------------------------------------------------------------------
> SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
> The future of the web can't happen without you. Join us at MIX09 to help
> pave the way to the Next Web now. Learn more and register at
> http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
> _______________________________________________
> Moin-user mailing list
> Moin-user at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/moin-user
>
--
--
Matthew Franz
mdfranz at gmail.com
More information about the Moin-user
mailing list