LDAP with TLS on Log Server
-
CFT6Server
- Posts: 506
- Joined: Wed Apr 15, 2015 4:21 pm
Re: LDAP with TLS on Log Server
Any Update? Thanks.
-
scottwilkerson
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: LDAP with TLS on Log Server
ssax wrote:Can you post some sanitized screenshots of your current settings in NNA and in LS? I want to see what your settings are (and if you are using ldaps:// in the server box).
-
CFT6Server
- Posts: 506
- Joined: Wed Apr 15, 2015 4:21 pm
Re: LDAP with TLS on Log Server
That was PM'd to SSAX a while ago.....
Re: LDAP with TLS on Log Server
Sorry about that, I think this may be that you need to import your CA certificates into openldap.
If you look at this file on your NNA server:
You should see a TLS_CACERT line, if you transfer the file that it points to over to your LS server and run this command, does it work?
Here is a guide to setting it up from scratch (I know it says it's for XI button the same process is needed):
https://assets.nagios.com/downloads/nag ... ponent.pdf
If you look at this file on your NNA server:
Code: Select all
/etc/openldap/ldap.confCode: Select all
service httpd restartHere is a guide to setting it up from scratch (I know it says it's for XI button the same process is needed):
https://assets.nagios.com/downloads/nag ... ponent.pdf
-
CFT6Server
- Posts: 506
- Joined: Wed Apr 15, 2015 4:21 pm
Re: LDAP with TLS on Log Server
Actually looking at our NNA server, it doesn't have the LDAP cert, but still seems to work with TLS.
I will go through and test this, but the first instance that I tested this on is still returning with "Can't contact LDAP server", but once TLS is taken off, it works.
I will go through and test this, but the first instance that I tested this on is still returning with "Can't contact LDAP server", but once TLS is taken off, it works.
Re: LDAP with TLS on Log Server
Let us know what testing it returns.
Thanks!
Thanks!
Former Nagios Employee.
me.
me.
-
CFT6Server
- Posts: 506
- Joined: Wed Apr 15, 2015 4:21 pm
Re: LDAP with TLS on Log Server
So I confirmed that on NNA, I did not have to go through the certificate steps in order for LDAP to function. I just go to the page and set up LDAP and it works.
Now on Log server, I went ahead and installed the certificates but still getting the same issue when using TLS. Tested this on two separate Log servers.
Did you guys get TLS working in your testing?
Now on Log server, I went ahead and installed the certificates but still getting the same issue when using TLS. Tested this on two separate Log servers.
Did you guys get TLS working in your testing?
-
Box293
- Too Basu
- Posts: 5126
- Joined: Sun Feb 07, 2010 10:55 pm
- Location: Deniliquin, Australia
- Contact:
Re: LDAP with TLS on Log Server
Thanks for that. It's currently Thanksgiving holidays in the USA and the support office is closed. I would not expect a reply until next week.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
-
CFT6Server
- Posts: 506
- Joined: Wed Apr 15, 2015 4:21 pm
Re: LDAP with TLS on Log Server
Thanks Box293. I gather as much. I have LDAP configured without TLS at the moment, so not dire. I'll see what the support team comes back with.
Re: LDAP with TLS on Log Server
I think it's probably best for us to move this into a ticket so that we can schedule a remote to dig into it. Please send an email to [email protected] with a descriptive subject and detailed body with a link back to this thread so that we can get it set up.
Thank you
Thank you