Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-2001

Replication using TLS does not work when confidentiality is enforced

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.0-M17
    • Fix Version/s: 2.0.0-M18
    • Component/s: None
    • Labels:
      None
    • Environment:
      Ubuntu 14.04.1

      Description

      Replication was set up and working and TLS enabled in replication consumers.

      I changed the ads-confidentialityrequired attribute to TRUE and replication fails:

      [15:09:08] INFO [org.apache.directory.server.CONSUMER_LOG] - Consumer 0 connected to producer lmldap:10389
      [15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] - Failed to bind to the producer lmldap:10389 with the given bind Dn uid=admin,ou=system
      [15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] -
      org.apache.directory.api.ldap.model.exception.LdapAuthenticationNotSupportedException: Confidentiality (TLS secured connection) is required.

      It appears the bind for the replication is happening before TLS is set up or TLS is not actually being used even though the ads-replusetls is TRUE.

        Activity

        Hide
        akiran Kiran Ayyagari added a comment -

        Thanks for the report, fixed this in trunk. See http://svn.apache.org/r1624052.

        Show
        akiran Kiran Ayyagari added a comment - Thanks for the report, fixed this in trunk. See http://svn.apache.org/r1624052 .

          People

          • Assignee:
            akiran Kiran Ayyagari
            Reporter:
            lkinley Lance Kinley
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development