Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-2001

Replication using TLS does not work when confidentiality is enforced

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-M17
    • Fix Version/s: 2.0.0-M18
    • Component/s: None
    • Labels:
      None
    • Environment:
      Ubuntu 14.04.1

      Description

      Replication was set up and working and TLS enabled in replication consumers.

      I changed the ads-confidentialityrequired attribute to TRUE and replication fails:

      [15:09:08] INFO [org.apache.directory.server.CONSUMER_LOG] - Consumer 0 connected to producer lmldap:10389
      [15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] - Failed to bind to the producer lmldap:10389 with the given bind Dn uid=admin,ou=system
      [15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] -
      org.apache.directory.api.ldap.model.exception.LdapAuthenticationNotSupportedException: Confidentiality (TLS secured connection) is required.

      It appears the bind for the replication is happening before TLS is set up or TLS is not actually being used even though the ads-replusetls is TRUE.

        Attachments

          Activity

            People

            • Assignee:
              akiran Kiran Ayyagari
              Reporter:
              lkinley Lance Kinley
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: