Hi,
I deployed NAV 5.14 on a debian 10 VM and configured LDAP authentication as from https://nav.readthedocs.io/en/latest/reference/ldap.html?highlight=ldap - however if using LDAP the login works randomly (need to try 2 to 5/6 time to login) while LDAPS never works. I did a test with ldapsearch on the same VM using both LDAP and LDAPS and both works so no issues with basedn or manager credentials nor with certificates. Is anyone else experiencing the same issue ? Other LDAPS based applications we use internally sucessfully connect to same AD servers.
Anyone can help maybe?
Thanks!
Andrea
Andrea.Verni@u-blox.com said:
Is anyone else experiencing the same issue ? Other LDAPS based applications we use internally sucessfully connect to same AD servers.
Anyone can help maybe?
Set debug to yes and peruse the apache error log for clues about what goes wrong. Since it works sometimes I guess not all of your AD servers are reachable.
--Ingeborg
Managed to fix by configuring following parameters in ldap.conf:
SIZELIMIT 0 DEREF always REFERRALS off
Thanks!
Andrea -----Original Message----- From: nav-users-request@uninett.no nav-users-request@uninett.no On Behalf Of Ingeborg Hellemo Sent: Thursday, September 2, 2021 1:36 PM To: Andrea Verni Andrea.Verni@u-blox.com Cc: nav-users@uninett.no Subject: Re: LDAP / ActiveDirectory issues
*** This is an EXTERNAL email. It was sent from outside of u-blox. ***
Andrea.Verni@u-blox.com said:
Is anyone else experiencing the same issue ? Other LDAPS based applications we use internally sucessfully connect to same AD servers.
Anyone can help maybe?
Set debug to yes and peruse the apache error log for clues about what goes wrong. Since it works sometimes I guess not all of your AD servers are reachable.
--Ingeborg -- Ingeborg Østrem Hellemo -- ingeborg.hellemo@uit.no Dep. of Information Technology --- Univ. of Tromsø
-
Andrea Verni -
Ingeborg Hellemo