thr3ads.net - samba - [Samba] Security Implications of "ldap server require strong auth"? [May 2024]

If this information is useful, please help other people find it:
Share via:

Christian Naumer

2024-May-28 05:51 UTC

[Samba] Security Implications of "ldap server require strong auth"?

Am 28.05.24 um 07:34 schrieb Bestattungen Vitt - Thomas Reitelbach via 
samba:> 
> Christian Naumer said, I can get Nextcloud to work without this insecure 
> parameter - I'll have to figure out how I could acceppt a self-signed 
> certificate on the side of apache2/php-ldap module.
I checked our installation and found this in the Nextcloud Doku 
(https://docs.nextcloud.com/server/28/admin_manual/configuration_user/user_auth_ldap.html):

Turn off SSL certificate validation:

     Turns off SSL certificate checking. Use it for testing only! Note: 
The effect of this setting depends on the PHP system configuration. It 
does for example not work with the [official Nextcloud container 
image](https://github.com/nextcloud/docker). To disable certificate 
verification for a particular use, append the following configuration 
line to your /etc/ldap/ldap.conf:

     ` TLS_REQCERT ALLOW `



Regards

Christian

Bestattungen Vitt - Thomas Reitelbach

2024-May-28 06:15 UTC

head link

[Samba] Security Implications of "ldap server require strong auth"?

Am 28.05.2024 07:51, schrieb Christian Naumer via samba:> Am 28.05.24 um 07:34 schrieb Bestattungen Vitt - Thomas Reitelbach via 
> samba:
>> 
>> Christian Naumer said, I can get Nextcloud to work without this 
>> insecure parameter - I'll have to figure out how I could acceppt a 
>> self-signed certificate on the side of apache2/php-ldap module.
> 
> I checked our installation and found this in the Nextcloud Doku
>
(https://docs.nextcloud.com/server/28/admin_manual/configuration_user/user_auth_ldap.html):
> 
> Turn off SSL certificate validation:
> 
>     Turns off SSL certificate checking. Use it for testing only! Note:
> The effect of this setting depends on the PHP system configuration. It
> does for example not work with the [official Nextcloud container
> image](https://github.com/nextcloud/docker). To disable certificate
> verification for a particular use, append the following configuration
> line to your /etc/ldap/ldap.conf:
> 
>     ` TLS_REQCERT ALLOW `
Thank you very much for your research, this is what I also found this 
morning with the correct google search terms :)
Anyway, this is no longer samba related, so I'll close this thread here. 
And with the hints I got on this list I'll be able to reach my goal by 
myself now :)

Cheers
Thomas

-- 
Bestattungen Vitt oHG
Inhaber Willi & Thomas Reitelbach
Rochusstra?e 176
53123 Bonn-Duisdorf
Registergericht: Amtsgericht Bonn, HRA 7958

Facebook:     http://www.facebook.de/bestattungenvitt
Gedenkportal: http://begleiten.bestattungen-vitt.de
Internet:     http://www.bestattungen-vitt.de

Telefon: 0228 - 62 68 68
Fax: 0228 - 978 30 36

Seemingly Similar Threads

Search for more maybe matching threads

samba - May 2024 - Security Implications of "ldap server require strong auth"?

[Samba] Security Implications of "ldap server require strong auth"?

[Samba] Security Implications of "ldap server require strong auth"?

Seemingly Similar Threads