automx2 ldap config example using mysql database
Ralph Seichter
automx2 at seichter.de
Tue Jul 6 13:44:06 CEST 2021
* Ben Polman:
> Is it possible to configure the ldap connection to use starttls
> instead of ssl ?
The current automx2 version does not pass "Tls" or "SSLContext" objects
to the ldap3 [1] library, and since ldap3's connection URL schema must
be either ldap or ldaps, STARTTLS is not available. Is there a
particular reason for you not to use ldaps?
[1] https://ldap3.readthedocs.io/
> where do I configure the certificates
That depends on your operating system. If you use Linux and OpenSSL, you
can add CA files locally in /usr/local/share/ca-certificates (remember
to run "update-ca-certificates" or similar after adding CA files).
-Ralph
More information about the automx-users
mailing list