Use STARTTLS with LDAP
180 views
Skip to first unread message
Denny Fuchs
May 21, 2019, 8:39:16 AM5/21/19
to rundeck-discuss
hi,
LDAPS is deprecated so we want to use STARTTLS with our LDAP server. Is there a way, to force StartTLS for authentication in Rundeck ?
cu denny
Reiner Acuña
May 21, 2019, 6:29:04 PM5/21/19
to rundeck-discuss
Hi Denny,
Right now Rundeck supports LDAP+SSL like this:
https://docs.rundeck.com/docs/administration/security/authenticating-users.html#communicating-over-secure-ldap-ldaps
In this thread, you can see some problems to force use LDAP+STARTTLS on Rundeck:
https://groups.google.com/forum/#!topic/rundeck-discuss/IGnkrTRS5zk/discussion
Maybe the Rundeck authentication deserves an enhancement to support LDAP+STARTTLS natively, you can suggest it here to follow up:
https://github.com/rundeck/rundeck/issues
Greetings!
Right now Rundeck supports LDAP+SSL like this:
https://docs.rundeck.com/docs/administration/security/authenticating-users.html#communicating-over-secure-ldap-ldaps
In this thread, you can see some problems to force use LDAP+STARTTLS on Rundeck:
https://groups.google.com/forum/#!topic/rundeck-discuss/IGnkrTRS5zk/discussion
Maybe the Rundeck authentication deserves an enhancement to support LDAP+STARTTLS natively, you can suggest it here to follow up:
https://github.com/rundeck/rundeck/issues
Greetings!
Reiner Acuña
May 23, 2019, 11:01:29 PM5/23/19
to rundeck-discuss
Hey Denny,
I did some test and it's
possible config LDAP+STARTTLS with Rundeck. You only need to configure
Rundeck in the same way that using regular OpenLDAP following this:
You can test in some secure environment following this guide to LDAP+STARTTLS side:
Hope it helps!
Reply all
Reply to author
Forward
0 new messages