[DIRSERVER-2001] Replication using TLS does not work when confidentiality is enforced - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.0-M17
Fix Version/s: 2.0.0-M18
Component/s: None
Labels:
None
Environment:
Ubuntu 14.04.1

Description

Replication was set up and working and TLS enabled in replication consumers.

I changed the ads-confidentialityrequired attribute to TRUE and replication fails:

[15:09:08] INFO [org.apache.directory.server.CONSUMER_LOG] - Consumer 0 connected to producer lmldap:10389
[15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] - Failed to bind to the producer lmldap:10389 with the given bind Dn uid=admin,ou=system
[15:09:08] WARN [org.apache.directory.server.CONSUMER_LOG] -
org.apache.directory.api.ldap.model.exception.LdapAuthenticationNotSupportedException: Confidentiality (TLS secured connection) is required.

It appears the bind for the replication is happening before TLS is set up or TLS is not actually being used even though the ads-replusetls is TRUE.

Attachments

Activity

People

Assignee:: Kiran Ayyagari

Reporter:: Lance Kinley

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 10/Sep/14 15:33

Updated:: 10/Sep/14 16:12

Resolved:: 10/Sep/14 16:12