LDAP with TLS on Log Server

[CFT6Server]

I am configuring LDAP authentication on Log Server running 2R1.0. Looks like the LDAP configuration is the same as Network Analyzer. I've replicated the same setting but it doesn't seem to work. If I set the encryption to NONE, it works. On the NNA side, we have TLS option. For a setting perspective, it looks fine, but perhaps I am missing a step? Any ideas?

[jolson]

This should be identical to how you've set up your NNA box. I recommend upgrading to *at least* R2.1 - and if possible to 1.3.0. There have been AD/LDAP fixes contained in those releases, and I have hope that they would help resolve your problem. If the update doesn't help, we can take a deeper look at what might be causing your issues. Let me know if upgrading is a possibility for you. Thanks!

https://assets.nagios.com/downloads/nag ... Server.pdf

[CFT6Server]

I will schedule an upgrade tonight to see if that helps. Thanks.

[jolson]

No problem - looking forward to your results!

[CFT6Server]

The Cluster was upgraded. Ran into some odd issues that put the cluster to red. I will let it sync up. However testing the LDAP authentication, I am still seeing the same message issue. If I put the encryption to NONE, then it works. No luck for TLS. I have SSL and HTTPS redirect enabled on our cluster, could this be causing any issues?

[ssax]

I'd like to setup some debugging but I need to know what version of log server you upgraded to so that I can look at the proper code.

Thank you

[CFT6Server]

I used the latest download for the upgrade. Version is 1.3.0.

[ssax]

Ok, I'll look at the code and come up with some debugging on Monday so that we can get some more information.

Thank you

[CFT6Server]

Any updates? For now I've set encryption to NONE as a workaround, but would like to set this to TLS to match our NNA.

[ssax]

Can you post some sanitized screenshots of your current settings in NNA and in LS? I want to see what your settings are (and if you are using ldaps:// in the server box).