search for: 146634

.../ca.pem and imported that as an >> additional CA ... >> >> ... and now it works ... I wonder how long ... > > and then it failed > and now it works > > hmm ... will check back tmrw Do I have to add ca.pem or cert.pem?? reference: https://forum.netgate.com/topic/146634/openvpn-auth-via-samba4-ads-ldap

...a Administration/OU=Samba - temporary autogenerated CA certificate/CN=ADC1.arbeitsgruppe.mydomain.at So I would have to use "adc1.arbeitsgruppe.mydomain.at" ? But why did that work yesterday ... ? aside from this thread I also posted at netgate forum: https://forum.netgate.com/topic/146634/openvpn-auth-via-samba4-ads-ldap thanks

Am 18.09.19 um 19:32 schrieb Stefan G. Weichinger via samba: > Am 18.09.19 um 19:28 schrieb Stefan G. Weichinger via samba: > >> So I would have to use "adc1.arbeitsgruppe.mydomain.at" > > Tried that. Doesn't help so far. > > gives: > > [2019/09/18 19:32:07.544332, 1] > ../source4/lib/tls/tls_tstream.c:1439(tstream_tls_retry_handshake) > TLS

...gt; >> > >> ... and now it works ... I wonder how long ... > > > > and then it failed > > and now it works > > > > hmm ... will check back tmrw > > Do I have to add ca.pem or cert.pem?? > > reference: > > https://forum.netgate.com/topic/146634/openvpn-auth-via-samba4-ads-ldap > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >

Yesterday I set up the pfsense-OpenVPN-Server to auth against the samba-AD worked great already ... Now without a change I get errors and wonder why. I used the IP as "host" and TCP-STARTTLS to port 389 log.samba shows: [2019/09/18 18:38:22.123976, 1] ../source4/lib/tls/tls_tstream.c:1439(tstream_tls_retry_handshake) TLS ../source4/lib/tls/tls_tstream.c:1439 - A TLS fatal alert