automx2 ldap config example using mysql database

Ben Polman Ben.Polman at
Tue Jul 6 16:44:30 CEST 2021

switched to ldaps, works without further configuration needed


> * Ben Polman:
>> Is it possible to configure the ldap connection to use starttls
>> instead of ssl ?
> The current automx2 version does not pass "Tls" or "SSLContext" objects
> to the ldap3 [1] library, and since ldap3's connection URL schema must
> be either ldap or ldaps, STARTTLS is not available. Is there a
> particular reason for you not to use ldaps?
> [1]
>> where do I configure the certificates
> That depends on your operating system. If you use Linux and OpenSSL, you
> can add CA files locally in /usr/local/share/ca-certificates (remember
> to run "update-ca-certificates" or similar after adding CA files).
> -Ralph

Dr. B.J.W. Polman, C&CZ, Radboud University Nijmegen.
Heyendaalseweg 135, 6525 AJ Nijmegen, The Netherlands, Phone: +31-24-3653360
e-mail: Ben.Polman at

More information about the automx-users mailing list