automx2 ldap config example using mysql database

Ralph Seichter automx2 at
Tue Jul 6 13:44:06 CEST 2021

* Ben Polman:

> Is it possible to configure the ldap connection to use starttls
> instead of ssl ?

The current automx2 version does not pass "Tls" or "SSLContext" objects
to the ldap3 [1] library, and since ldap3's connection URL schema must
be either ldap or ldaps, STARTTLS is not available. Is there a
particular reason for you not to use ldaps?


> where do I configure the certificates

That depends on your operating system. If you use Linux and OpenSSL, you
can add CA files locally in /usr/local/share/ca-certificates (remember
to run "update-ca-certificates" or similar after adding CA files).


More information about the automx-users mailing list