<table cellspacing="0" cellpadding="0" border="0" ><tr><td valign="top" style="font: inherit;">Indeed.<br><br>Patch provided here : http://dev.opennebula.org/issues/1171<br><br>:-)<br><br>--- En date de : <b>Jeu 12.4.12, Simon Boulet <i><simon@nostalgeek.com></i></b> a écrit :<br><blockquote style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;"><br>De: Simon Boulet <simon@nostalgeek.com><br>Objet: Re: [one-users] LDAP SSL configuration bug<br>À: "Graeme Gillies" <graeme.r.gillies@gmail.com><br>Cc: users@lists.opennebula.org<br>Date: Jeudi 12 avril 2012, 5h52<br><br><div class="plainMail">Hi Graeme,<br><br>I think this issue was already reported and fixed in the latest 3.4.<br><br><a href="http://dev.opennebula.org/issues/967" target="_blank">http://dev.opennebula.org/issues/967</a><br><br>Regards,<br><br>Simon<br><br>On Wed, Apr 11, 2012 at 8:40 PM, Graeme Gillies<br><<a
ymailto="mailto:graeme.r.gillies@gmail.com" href="/mc/compose?to=graeme.r.gillies@gmail.com">graeme.r.gillies@gmail.com</a>> wrote:<br>> Hi,<br>><br>> I've been wrestling with getting LDAP authentication work with<br>> opennebula for a while now, the main difficulty being our ldap server<br>> only supports TLS/SSL.<br>><br>> I've been setting the line in /etc/one/ldap/ldap_auth.conf<br>><br>> :auth_method: :simple_tls<br>><br>> like the instructions at<br>><br>> <a href="http://www.opennebula.org/documentation:rel3.4:ldap" target="_blank">http://www.opennebula.org/documentation:rel3.4:ldap</a><br>><br>> suggest to do, but it still didn't seem to be communicating via<br>> TLS/SSL correctly.<br>><br>> After much code diving I see that inside if Net-LDAP it's not the<br>> authentication variable that needs that needs to be set, but rather<br>> the encryption option needs to get set to
:simple_tls for TLS/SSL to<br>> work.<br>><br>> I managed to get it working by changing my /etc/one/ldap/ldap_auth.conf to<br>><br>> :auth_method: :simple<br>> :encryption: :simple_tls<br>><br>> And then modifying /usr/lib/one/ruby/ldap_auth.rb adding in the line<br>><br>> ops[:encryption]=@options[:encryption] if @options[:encryption]<br>><br>> in the initialize method just before the creation of the Net::LDAP object.<br>><br>> Is it possible to get the code fixed and the documentation updated<br>> (assuming the above is all correct?)<br>><br>> Regards,<br>><br>> Graeme<br>> _______________________________________________<br>> Users mailing list<br>> <a ymailto="mailto:Users@lists.opennebula.org" href="/mc/compose?to=Users@lists.opennebula.org">Users@lists.opennebula.org</a><br>> <a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org"
target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br>_______________________________________________<br>Users mailing list<br><a ymailto="mailto:Users@lists.opennebula.org" href="/mc/compose?to=Users@lists.opennebula.org">Users@lists.opennebula.org</a><br><a href="http://lists.opennebula.org/listinfo.cgi/users-opennebula.org" target="_blank">http://lists.opennebula.org/listinfo.cgi/users-opennebula.org</a><br></div></blockquote></td></tr></table>