Hello Froum,
I need your help, I’m stumped.
I have a Nextcloud instance which is to obtain the users via an Active Directory (2022).
Only LDAPS is available to me here.
I have already imported the certificates into the system (Ubuntu).
/usr/share/ca-certificates/
I also stored the certificates in ldap.conf
.
The server was then also restarted.
The query via curl on the server works without any problems
curl ldaps://mein-ad.domain.com:636
If I now want to connect the AD via NextCloud, this does not work.
It supposedly cannot establish a connection to the AD.
The log shows the following:
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:29+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:29+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:7636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:33+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:33+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:7389\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
Unfortunately, there is no more information on this.
The configuration is as follows:
Host: ldaps://mein-ad.domain.com
Port: 636
Benutzer-DN: CN=Service NextCloud,OU=Pfad,OU=Zur OU,OU=MY,DC=DOMAIN,DC=local
The funny thing is that a current “old” Active Directory can be connected via LDAP (without s) without any problems.
The connection via LDAP works for now, but NextCloud seems to have a problem with LDAPs.
I haven’t found any better logs, so I need some good advice from you