The mailing list for listmasters using Sympa

[Andreas Hubert <address@concealed>]

Hi there!

I’d like to setup sympa with LDAP-SSL authentication, it works really nice with LDAP, but not when I activate SSL.

Here my auth.conf without ssl

ldap

    host dc1:389,dc2:389

    timeout 20

    bind_dn cn=sympa,cn=Users,dc=my,dc=domain,dc=com

    bind_password secret

    suffix dc=my,dc=domain,dc=com

    get_dn_by_uid_filter (sAMAccountName=[sender])

    get_dn_by_email_filter (|(mail=[sender])(alternate_email=[sender]))

    alternative_email_attribute alternate_email

    email_attribute mail

    scope sub

and here with ssl

ldap

    host dc1:636,dc2:636

    timeout 20

    bind_dn cn=sympa,cn=Users,dc=my,dc=domain,dc=com

    bind_password secret

    suffix dc=my,dc=domain,dc=com

    get_dn_by_uid_filter (sAMAccountName=[sender])

    get_dn_by_email_filter (|(mail=[sender])(alternate_email=[sender]))

    alternative_email_attribute alternate_email

    email_attribute mail

    scope sub

    use_ssl 1

    ssl_version tlsv1

    ssl_ciphers MEDIUM:HIGH

these are the log messages when i try to login with ssl

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com] [session 76181678896750] [client 192.168.1.2] main::do_login() do_login(MyUser)

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com] [session 76181678896750] [client 192.168.1.2] main::do_login() do_login(MyUser)

Apr 10 17:08:20 mailman wwsympa[8068]: err tools::valid_email() Invalid email address 'MyUser'

Apr 10 17:08:20 mailman wwsympa[8068]: err tools::valid_email() Invalid email address 'MyUser'

Apr 10 17:08:20 mailman wwsympa[8068]: err LDAPSource::connect() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err LDAPSource::connect() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err Auth::ldap_authentication() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err Auth::ldap_authentication() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err Auth::check_auth() Incorrect Ldap password

Apr 10 17:08:20 mailman wwsympa[8068]: err Auth::check_auth() Incorrect Ldap password

Apr 10 17:08:20 mailman wwsympa[8068]: notice main::do_login() Authentication failed

Apr 10 17:08:20 mailman wwsympa[8068]: notice main::do_login() Authentication failed

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com] [session 76181678896750] [client 192.168.1.2] main::do_renewpasswd() do_renewpasswd(MyUser)

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com] [session 76181678896750] [client 192.168.1.2] main::do_renewpasswd() do_renewpasswd(MyUser)

Apr 10 17:08:20 mailman wwsympa[8068]: err LDAPSource::connect() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err LDAPSource::connect() Unable to connect to the LDAP server 'dc1:636,dc2:636'

Apr 10 17:08:20 mailman wwsympa[8068]: err main::is_ldap_user() Unable to connect to the LDAP server ''

Apr 10 17:08:20 mailman wwsympa[8068]: err main::is_ldap_user() Unable to connect to the LDAP server ''

Apr 10 17:08:20 mailman wwsympa[8068]: err tools::valid_email() Invalid email address 'MyUser'

Apr 10 17:08:20 mailman wwsympa[8068]: err tools::valid_email() Invalid email address 'MyUser'

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com  [session 76181678896750] [client 192.168.1.2]  main::do_renewpasswd() do_renewpasswd: incorrect email \"MyUser\"

Apr 10 17:08:20 mailman wwsympa[8068]: info [robot lists.domain.com  [session 76181678896750] [client 192.168.1.2]  main::do_renewpasswd() do_renewpasswd: incorrect email \"MyUser\"

Any idea what I missed?

Thanks

Andreas

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail