389-ds-base

Clone
Source Code
GIT

#49748 passthrough plugin configured to do starttls does not work.
Closed: wontfix 6 years ago Opened 6 years ago by mreynolds.

Closed: wontfix
Reopen Issue

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1581737

Description of problem:

I have configured passthrough plugin to do Starttls:


nsslapd-pluginarg0: ldap://nslcd.parente.local:1389/dc=parente,dc=local 3,5,30,3,300,1


I have added plugin debug logs. To have that login, I had to define this in
source code and re-build:

#define    PASSTHRU_VERBOSE_LOGGING

Then I see clearly:

passthru-plugin - PTA server host: "nslcd.parente.local", port: 1389, secure:
2, maxconnections: 3, maxconcurrency: 5, timeout: 300, ldversion: 3,
connlifetime: 300

secure: 2 means starttls:



bind as:

ldapsearch -D "uid=omc,ou=people,dc=parente,dc=local" -w secret12 -b
"dc=parente,dc=local" -s base


But in the access logs, we see clearly:

[23/May/2018:10:07:20.883924603 -0400] conn=1 fd=64 slot=64 connection from
10.10.178.222 to 10.10.178.222
[23/May/2018:10:07:20.884685945 -0400] conn=1 op=0 BIND
dn="uid=omc,ou=people,dc=parente,dc=local" method=128 version=3
[23/May/2018:10:07:20.886823710 -0400] conn=1 op=0 RESULT err=0 tag=97
nentries=0 etime=0.0002572394 dn="uid=omc,ou=people,dc=parente,dc=local"

No startls.


Version-Release number of selected component (if applicable):

389-ds-base-1.3.7.5-21.el7_5

Metadata Update from @mreynolds:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1581737
6 years ago

Metadata Update from @mreynolds:
- Custom field component adjusted to None
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to review
- Custom field type adjusted to None
- Custom field version adjusted to None
6 years ago

commit d870eb0

9475c81..dae67ab 389-ds-base-1.3.8 -> 389-ds-base-1.3.8

9f45f62..8d364e9 389-ds-base-1.3.7 -> 389-ds-base-1.3.7

Metadata Update from @mreynolds:
- Issue close_status updated to: fixed
- Issue set to the milestone: 1.3.7.0 (was: 0.0 NEEDS_TRIAGE)
- Issue status updated to: Closed (was: Open)
6 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/2807

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: fixed)
4 years ago

Log in to comment on this ticket.

Metadata
None
None
None
None
None
review
None
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.