ldap_bind: Confidentiality required (13)

12.04 server ssl openssl openldap
21,634

Solution 1

In /etc/ldap/ldap.conf, set:

SSL start_tls
TLS_REQCERT never

(Add the second line if you're using a self-signed certificate.)

Solution 2

From the openldap site I found this that should help you

Normally the error message in your subject is as a result of the server requiring encryption of some kind. For example, you might have set:

security tls=1

or similar, in which case you need to use ldaps:// or start_tls (-Z):

[bgmilne@comanche ~]$ ldapsearch -x -LLL "(uid=bgmilne)" 1.1
ldap_bind: Confidentiality required (13)
        additional info: TLS confidentiality required
[bgmilne@comanche ~]$ ldapsearch -Z -x -LLL "(uid=bgmilne)" 1.1
dn: uid=bgmilne,ou=People,dc=ranger,dc=dnsalias,dc=com

A quick summery is open a terminal and use

ldaps://

or

start_tls (-Z):

To start your prosses

Share:
21,634

Related videos on Youtube

Sayed Ahmad
Author by

Sayed Ahmad

Updated on September 18, 2022

Comments

  • Sayed Ahmad
    Sayed Ahmad over 1 year

    I want to configure ldap with ssl so I used openssl for certificate and when I enable olcSecurity tls=1 in /etc/ldap/slapd.d/cn=config.ldif and now when I try to use ldapsearch or try to login it gives this message ldap_bind: Confidentiality required (13). Help please

  • Sayed Ahmad
    Sayed Ahmad over 9 years
    not working again I am getting the same error message
  • Sayed Ahmad
    Sayed Ahmad over 9 years
    this command shows nothing
  • Mark Kirby
    Mark Kirby over 9 years
    Does the following mean anything to you You must have a "ssf" setting in your slapd.conf/slapd.d
  • Sayed Ahmad
    Sayed Ahmad over 9 years
    yes I try both of them but I don't know about ssf
  • Mark Kirby
    Mark Kirby over 9 years
    I dont use the program so just trying to troubleshoot here : Does this mean anything to you : Turn on the "Allow Clear Text Password" or tick off the "Required TLS for simple binds with password" box on the LDAP Group object in ConsoleOne
  • Mark Kirby
    Mark Kirby over 9 years
    This is a very complex subject I beleve this information may be useful to you linuxlasse.net/linux/howtos/…
  • Greg Schmit
    Greg Schmit about 7 years
    The -Z option you mentioned helped me. I don't know why I didn't think of it since I used it with ldapsearch...
  • NicoKowe
    NicoKowe almost 5 years
    The answer is below. add -Z to ldapsearch

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Where are PEM files stored for validating SSL certificates?
Ubuntu 14.04, OpenLDAP TLS problems
Enabling SSL breaks apache
Cannot connect to wss with Flutter
OpenSSL Verify Peer (Client) Certificate in C++
Error while creating self-signed SSL certificate
How to enable TLS1.2 on IIS7 Windows Server 2008 R2
SSL/HTTPS client in C
LetsEncrypt SSL Error - SSL routines:ssl3_get_record:wrong version number
python3 and requests: still getting 'sslv3 alert handshake failure'