I try to setup LDAPS authentification on Zabbix 2.4 but it's not working. Here is the infos on my configuration :
- OS : Debian
-
PHP packages installed :
libapache2-mod-php5 php-pear
php5
php5-cli
php5-common
php5-curl
php5-gd
php5-imagick
php5-json
php5-ldap
php5-mysqlnd
php5-pgsql
php5-readline
php5-sasl
zabbix-frontend-php
-
This command is working :
ldapsearch -H ldaps://ldaps.mptest.be:636 -D cn=reader,dc=antidot,dc=prv -W -b ou=people,dc=antidot,dc=prv
Same URI, OU, login, password in the Authentification LDAP setup page on zabbix, I have this :
ldap_bind(): Unable to bind to server: Can't contact LDAP server
[authentication.php:120 → CLdapAuthValidator->validate() → CLdap->checkPass() → ldap_bind() in /usr/share/zabbix/include/classes/ldap/CLdap.php:112] LDAP: cannot bind by given Bind DN. Login name or password is incorrect!
Here is the content of /etc/ldap/ldap.conf:
TLS_REQCERT allow
BASE dc=antidot,dc=prv
URI ldaps://ldap.mptest.be
TLS_CACERTDIR /etc/ssl/mptest/wildcard_mptest_be.ca
(Authentification without SSL, on port 386 is not possible)
Best Answer
This is what works on Ubuntu 14.04. Debian based system should be the same:
https://www.novell.com/coolsolutions/tip/5838.html