[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: "TLS section "tls" missing, trying to use legacy configuration" log message in 3.0.10
From:       Thomas Stather <Thomas.Stather () mpimf-heidelberg ! mpg ! de>
Date:       2016-02-25 10:17:29
Message-ID: 56CED4B9.10700 () mpimf-heidelberg ! mpg ! de
[Download RAW message or body]

Yes thats inside the ldap config file

I have configured 2 ldap servers in the file like:

ldap ldap1 {
...
   tls {
   ...
    }
}


ldap ldap2 {
...
   tls {
   ...
    }
}

Misplaced curly brackets would make the server stop at startup.
Or where else should the error come from?

Best,
Thomas

Am 23.02.2016 um 12:01 schrieb Matthew Newton:
> On Tue, Feb 23, 2016 at 11:31:12AM +0100, Thomas Stather wrote:
>> ...
>> Tue Feb 23 11:23:13 2016 : Info: rlm_ldap: libldap vendor: OpenLDAP,
>> version: 20439
>> Tue Feb 23 11:23:13 2016 : Info: TLS section "tls" missing, trying to use
>> legacy configuration
>> ...
>>
>>
>> However, i have the "tls" section in my /mods-enabled/ldap config file:
>>
>>          tls {
>>          start_tls  = yes
>>          ca_file = /etc/ssl/certs/ca-bundle.pem
>>          require_cert = "demand"
>>          }
> That's inside the ldap{} section?
>
> I'd guess either misplaced curly brackets somewhere or you're
> editing the wrong mods-enabled/ldap config file.
>
> Matthew
>
>

-- 
Thomas Stather
IT Services

Tel:  +49 6221-486 628
Fax: +49 6221-486 561

------------------------------------------------------------------------
Max Planck Institute for Medical Research (MPImF)
Jahnstrasse 29, 69120 Heidelberg
Germany

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]