"TLS section "tls" missing, trying to use legacy configuration" log message in 3.0.10

Thomas Stather Thomas.Stather at mpimf-heidelberg.mpg.de
Thu Feb 25 11:17:29 CET 2016


Yes thats inside the ldap config file

I have configured 2 ldap servers in the file like:

ldap ldap1 {
...
   tls {
   ...
    }
}


ldap ldap2 {
...
   tls {
   ...
    }
}

Misplaced curly brackets would make the server stop at startup.
Or where else should the error come from?

Best,
Thomas

Am 23.02.2016 um 12:01 schrieb Matthew Newton:
> On Tue, Feb 23, 2016 at 11:31:12AM +0100, Thomas Stather wrote:
>> ...
>> Tue Feb 23 11:23:13 2016 : Info: rlm_ldap: libldap vendor: OpenLDAP,
>> version: 20439
>> Tue Feb 23 11:23:13 2016 : Info: TLS section "tls" missing, trying to use
>> legacy configuration
>> ...
>>
>>
>> However, i have the "tls" section in my /mods-enabled/ldap config file:
>>
>>          tls {
>>          start_tls  = yes
>>          ca_file = /etc/ssl/certs/ca-bundle.pem
>>          require_cert = "demand"
>>          }
> That's inside the ldap{} section?
>
> I'd guess either misplaced curly brackets somewhere or you're
> editing the wrong mods-enabled/ldap config file.
>
> Matthew
>
>

-- 
Thomas Stather
IT Services

Tel:  +49 6221-486 628
Fax: +49 6221-486 561

------------------------------------------------------------------------
Max Planck Institute for Medical Research (MPImF)
Jahnstrasse 29, 69120 Heidelberg
Germany



More information about the Freeradius-Users mailing list