[Exim] LDAP over TLS failing to bind/lookup.

Top Page
Delete this message
Reply to this message
Author: Eric Renfro
Date:  
To: exim-users
Subject: [Exim] LDAP over TLS failing to bind/lookup.
Initialized connection with LDAP server ldap.mydomain.com:636
LDAP_OPT_X_TLS_HARD set
Binding with user=uid=___,ou=People,dc=mydomain,dc=com password=___
Bind failed: ldapauth returns FAIL

This is done with the documented ldapauth series:

login:
  driver = plaintext
  public_name = LOGIN
  server_prompts = "Username:: : Password::"
  server_condition = ${if ldapauth \
        { user="uid=${quote_ldap:$1},ou=People,dc=mydomain,dc=com" \
        pass="$2" \
        ldaps://ldap.mydomain.com/}{yes}{no}}"
  server_set_id = uid=$1,ou=People,dc=mydomain,dc=com


I've tested this same auth against using ldapsearch using -ZZ to make sure it
worked over TLS, and it succeeded.

Also, the same thing worked, using ldap, versus ldaps. I just would prefer it
over TLS for obvious security reasons.

Eric Renfro