Hi,
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
i.e. I need to put my LDAP certs somewhere on the web server and let roundcube know where these are - any ideas on where to configure this?
Regards
Hi, Are you able to perform a ldapsearch from server itself? When you get this working, it should be straight forward from roundcube after setting up the main.inc.php
like
ldapsearch -x -H ldap://server.xyz "(uid=test)" mail
On 03/09/15 16:14, Sunny wrote:
Hi,
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
i.e. I need to put my LDAP certs somewhere on the web server and let roundcube know where these are - any ideas on where to configure this?
Regards
Roundcube Users mailing list users@lists.roundcube.net http://lists.roundcube.net/mailman/listinfo/users
On Thursday, September 03, 2015 03:14:47 PM Sunny wrote:
Hi,
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
i.e. I need to put my LDAP certs somewhere on the web server and let roundcube know where these are - any ideas on where to configure this?
Regards
Roundcube Users mailing list users@lists.roundcube.net http://lists.roundcube.net/mailman/listinfo/users
Yea, I had that to. Look at the journal of as root like journalctl -n1000
or in the roundcubelog
Thomas Spuhler skrev den 2015-09-03 17:00:
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
i.e. I need to put my LDAP certs somewhere on the web server and let roundcube know where these are - any ideas on where to configure this?
Yea, I had that to. Look at the journal of as root like journalctl -n1000
or in the roundcubelog
try check if ldap server supports tls or ssl, and use that one if any in roundcube, if ldap is just in localhost disable tls / ssl since its waste of cpu power :)
but it can aswell be ldap auth login not working ?
just check tls fails first
is ldaps port 636 ?
does it work if using ldap port ?
does your ldap server supports both ?
sadly i have more questions here, would like to know how to make thunderbird ldap work aswell for addressbooks, mozilla is not very helpfull there :/
On 03/09/15 16:53, Benny Pedersen wrote:
Thomas Spuhler skrev den 2015-09-03 17:00:
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
i.e. I need to put my LDAP certs somewhere on the web server and let roundcube know where these are - any ideas on where to configure this?
Yea, I had that to. Look at the journal of as root like journalctl -n1000
or in the roundcubelog
try check if ldap server supports tls or ssl, and use that one if any in roundcube, if ldap is just in localhost disable tls / ssl since its waste of cpu power :)
ldap support tls
but it can aswell be ldap auth login not working ?
just check tls fails first
tls fails ldap_start_tls(): Unable to start TLS: Can't contact LDAP server
is ldaps port 636 ?
yes
does it work if using ldap port ?
does your ldap server supports both ?
yes
sadly i have more questions here, would like to know how to make thunderbird ldap work aswell for addressbooks, mozilla is not very helpfull there :/ _______________________________________________ Roundcube Users mailing list users@lists.roundcube.net http://lists.roundcube.net/mailman/listinfo/users
I have address book working in Thunderbird using my ldap host and port 636.
Does the ldap server need to be localhost for it to work with roundcube server?
Sundeep Singh Nanuwa skrev den 2015-09-04 16:11:
I want configure LDAP address book lookup, I have added the relevant info in main.inc.php using ldaps port 636 but I get the following error Sep 3 11:29:49 slapd[24950]: conn=22120 fd=19 closed (TLS negotiation failure)
ldap support tls
does this work in thunderbird ?
but it can aswell be ldap auth login not working ? just check tls fails first
tls fails
so ldap support tls ?
ldap_start_tls(): Unable to start TLS: Can't contact LDAP server
is ldaps port 636 ?
yes
so roundcube need to use STARTTLS just like it should with submission ?
or is it LDAPS before content is sent ?
possible ldaps need same ssl fixes just like imaps/smtps with verify peer certs ?
does it work if using ldap port ? does your ldap server supports both ?
yes
good
sadly i have more questions here, would like to know how to make thunderbird ldap work aswell for addressbooks, mozilla is not very helpfull there :/
I have address book working in Thunderbird using my ldap host and port 636.
Does the ldap server need to be localhost for it to work with roundcube server?
possible to get a mozilla link for the ldif setup or a copy from you that works from thunderbird ?, i have tryed to get it from mozilla, but still not found any info on it :(
for localhost i just say ssl/tls does not prevent data leaks since trafic is local, so all in all, use ssl/tls if outside of roundcube and openldap servere connections is used, same goes for thunderbird
just one thing left is that localhost can still be tcppdumped from unix users if its not socket with /path/to/socket eg inet socket is more unsecure if there is login users
hopefully i am right in that point
-
Benny Pedersen -
Josep Manel Andrés -
Sundeep Singh Nanuwa -
Sunny
-
Thomas Spuhler