NextCloud & LDAPS not working :(

Hello Froum,

I need your help, I’m stumped.

I have a Nextcloud instance which is to obtain the users via an Active Directory (2022).
Only LDAPS is available to me here.

I have already imported the certificates into the system (Ubuntu).
/usr/share/ca-certificates/
I also stored the certificates in ldap.conf.
The server was then also restarted.

The query via curl on the server works without any problems
curl ldaps://mein-ad.domain.com:636

If I now want to connect the AD via NextCloud, this does not work.
It supposedly cannot establish a connection to the AD.
The log shows the following:

{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:29+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:29+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:7636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:33+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:636\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}
{"reqId":"SeSJcgIje8MGZU3kLu60","level":0,"time":"2024-06-27T14:19:33+00:00","remoteAddr":"10.10.10.10","user":"A1XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Calling LDAP function ldap_connect with parameters [\"ldaps:\\/\\/mein-ad.domain.com:7389\"]","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0","version":"29.0.3.4","data":{"app":"user_ldap"}}

Unfortunately, there is no more information on this.

The configuration is as follows:
Host: ldaps://mein-ad.domain.com
Port: 636

Benutzer-DN: CN=Service NextCloud,OU=Pfad,OU=Zur OU,OU=MY,DC=DOMAIN,DC=local

The funny thing is that a current “old” Active Directory can be connected via LDAP (without s) without any problems.
The connection via LDAP works for now, but NextCloud seems to have a problem with LDAPs.
I haven’t found any better logs, so I need some good advice from you :slight_smile:

Update: I haven’t done anything, but since NC 30 the connection suddenly works without any problems.
Old AD deleted, new one added - connection fine.

This topic was automatically closed 8 days after the last reply. New replies are no longer allowed.