Results 1 to 2 of 2

Thread: [SOLVED] external "ldaps" query to zimbra

  1. #1
    Join Date
    May 2010
    Posts
    6
    Rep Power
    5

    Default external "ldaps" query to zimbra

    Hi, I would like to ask those who are familiar with ldap bit more than me:
    I have a edge spam filter (relay) and we use relay_recipients table, I am trying to suck users to this table, however I can't bind zimbra via ldaps .. I can verify
    PHP Code:
    openssl s_client -connect zimbra.domain.com:636 
    so I have connection to 636, trying to execute (on spam filter)
    PHP Code:
    ldapsearch --H ldaps://zimbra.domain.com -W -D "uid=zimbra,cn=admins,cn=zimbra" -v -d 255
    Enter LDAP Password
    ldap_sasl_bind
    ldap_send_initial_request
    ldap_new_connection 1 1 0
    ldap_int_open_connection
    ldap_connect_to_host
    TCP zimbra.domain.no:636
    ldap_new_socket
    3
    ldap_prepare_socket
    3
    ldap_connect_to_host
    Trying 172.16.1.2:636
    ldap_pvt_connect
    fd3 tm: -1 async0
    ldap_err2string
    ldap_sasl_bind
    (SIMPLE): Can't contact LDAP server (-1) 
    my /etc/ldap/ldap.conf on spam filter server is
    PHP Code:
    BASE    dc=domain,dc=com
    URI    ldaps
    ://zimbra.domain.com
    #ldap://ldap-master.example.com:666

    #SIZELIMIT    12
    #TIMELIMIT    15
    #DEREF        never
    TLS_CACERT /etc/ldap/tls-cert/ca.pem 
    where ca.pem is file copied from /opt/zimbra/conf/ca/ca.pem from zimbra host to spam filter
    ...........^^^ I am not sure if this is the file I need for TLS option to ldap.conf, the SSL is configured through Startcom where I got 1st class cert ....


    the zimbra host is in default setting, the only thing is that it listens on ldaps (636) configured according to zimbra-wiki

    any help or kick would be greatly appreciated!

    have another question if it's possible to setup ldap.conf on spam-filer in way that it can query multiple ldap zimbra servers so I can get complete relay_recipient table for all domains!!

    TIA! kuda

  2. #2
    Join Date
    May 2010
    Posts
    6
    Rep Power
    5

    Default [SOLVED] external "ldaps" query to zimbra

    PHP Code:
    TLS_REQCERT never 
    solved temporarily the problem so the problem was/is certificate related

Similar Threads

  1. ZCS7 Beta only Listens on IPv6
    By tobru in forum Installation
    Replies: 2
    Last Post: 03-25-2011, 04:31 AM
  2. Replies: 21
    Last Post: 02-04-2010, 10:06 AM
  3. Major Issue - 5.0RC2 NE to 5.0GA NE failed
    By DougWare in forum Installation
    Replies: 7
    Last Post: 01-06-2008, 09:56 PM
  4. zmtlsctl give LDAP error
    By sourcehound in forum Administrators
    Replies: 5
    Last Post: 03-11-2007, 04:48 PM
  5. Zimbra server crashed
    By goetzi in forum Administrators
    Replies: 6
    Last Post: 03-25-2006, 01:00 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •