I have setup the LDAP server as per official Ubuntu documentation. It appears to work fine when I manually user ldapsearch and returns all the information I expect.
When I login to the server, either locally or through SSH, there is a long (1-2 minute) pause before the authentication succeeds and I can log in.
During this time, the server syslog gets many repeats of this:
Jun 21 15:31:47 skyserver slapd[10310]: conn=1098 op=0 STARTTLS
Jun 21 15:31:47 skyserver slapd[10310]: conn=1098 op=0 RESULT oid= err=0 text=
Jun 21 15:31:48 skyserver slapd[10310]: conn=1098 fd=25 closed (TLS negotiation failure)
Jun 21 15:31:49 skyserver slapd[10310]: conn=1099 fd=25 ACCEPT from IP=127.0.0.1:53084 (IP=0.0.0.0:389)
Jun 21 15:31:49 skyserver slapd[10310]: conn=1099 op=0 EXT oid=1.3.6.1.4.1.1466.20037
Jun 21 15:31:49 skyserver slapd[10310]: conn=1099 op=0 STARTTLS
Jun 21 15:31:49 skyserver slapd[10310]: conn=1099 op=0 RESULT oid= err=0 text=
Jun 21 15:31:50 skyserver slapd[10310]: conn=1099 fd=25 closed (TLS negotiation failure)
Jun 21 15:31:51 skyserver slapd[10310]: conn=1100 fd=25 ACCEPT from IP=127.0.0.1:53085 (IP=0.0.0.0:389)
Jun 21 15:31:51 skyserver slapd[10310]: conn=1100 op=0 EXT oid=1.3.6.1.4.1.1466.20037
Jun 21 15:31:51 skyserver slapd[10310]: conn=1100 op=0 STARTTLS
After that, I see some searches performed on my uid and they return entries that obviously allow nssldap (or pamldap?) to authenticate me.
Does anyone have any idea on what is going wrong and where I should look for clues?
Thanks
Mike
Bookmarks