RE: TLSMC: MozNSS compatibility interception begins message
Alan, Thank you for the link: https://wiki.freeradius.org/modules/Rlm_ldap The server is using PEAP-MSCHAPv2 and LDAP not LDAPS. The messages are generated only when the server is started. Am I correct in assuming that I can safely ignore the messages? If I want to use LDAPS in the future, is the FR message below telling me that the server has been built with the correct libraries? Tue Jun 5 07:47:57 2018 : Info: Debugger not attached Tue Jun 5 07:47:58 2018 : Info: rlm_ldap: libldap vendor: OpenLDAP, version: 20444 Thank you for your time. Chris Howley
On Jun 5, 2018, at 2:30 PM, Chris Howley <C.P.Howley@leeds.ac.uk> wrote:
Alan,
Thank you for the link: https://wiki.freeradius.org/modules/Rlm_ldap
The server is using PEAP-MSCHAPv2 and LDAP not LDAPS. The messages are generated only when the server is started. Am I correct in assuming that I can safely ignore the messages?
If you're not using LDAP over SSL or the Start TLS extension it's probably OK. If you want to be absolutely sure use the OpenLDAP LTB packages which are built against OpenSSL.
If I want to use LDAPS in the future, is the FR message below telling me that the server has been built with the correct libraries?
It's telling you that the libldap library is provided by OpenLDAP, and it's version 2.4.44, but doesn't tell you which SSL provider its built against. -Arran
participants (2)
-
Arran Cudbard-Bell -
Chris Howley