Ephi Dror
2009-Apr-15 17:17 UTC
[Samba] Failed to join win2008 domain when "server ldap signing is required".
Hello, We are running samba 3.0.34 and having problem joining windows 2008 domain when "server ldap signing is required". We configured start-tls, copied over the CA certificate but getting an error for the request to start ssl/tls To be exact, here is what we see in wireshark: Our request to the domain: requestName: 1.3.6.1.4.1.1466.20037 (LDAP_START_TLS_OID) Respond from the domain: LDAPMessage extendedResp(1) (00000000: LdapErr: DSID-0C090E0B, comment: Error initializing SSL/TLS, data 0, v1771) We also saw the same problem with windows 2003 SP2 however; it is working well for any other windows 2003 domain. Is it a known issue? Any hint will be much appreciated. Cheers, Ephi PS: unfortunately, we can't switch to samba 3.2.x or 3.3.x at the moment to avoid doing tls in the first place.
Volker Lendecke
2009-Apr-16 09:00 UTC
[Samba] Failed to join win2008 domain when "server ldap signing is required".
On Wed, Apr 15, 2009 at 10:07:45AM -0700, Ephi Dror wrote:> PS: unfortunately, we can't switch to samba 3.2.x or 3.3.x > at the moment to avoid doing tls in the first place.I'm afraid you will have to upgrade. Volker -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.samba.org/archive/samba/attachments/20090416/e7fecca1/attachment.bin