LDAP integration

141 views
Skip to first unread message

Abdusamad Nazarov

unread,
Jul 22, 2025, 7:32:57 AM7/22/25
to Wazuh | Mailing List
Hello, 

The code doesn't work, I've been suffering for the second day!
echo -n | openssl s_client -connect XXX-XX-XX.xxxxxx.local:636 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > ldapcacert.pem

Result Error:
eroor.png

Thank you

Abdusamad Nazarov

unread,
Jul 22, 2025, 8:12:09 AM7/22/25
to Wazuh | Mailing List
Windows Server 2016
Wazuh 4.12

вторник, 22 июля 2025 г. в 16:32:57 UTC+5, Abdusamad Nazarov:

Fabian Ruiz

unread,
Jul 22, 2025, 8:38:56 PM7/22/25
to Wazuh | Mailing List
Hi  Abdusamad,

Check this command to verify if the LDAPS connection is working properly: openssl s_client -connect XXX-XX-XX.xxxxxx.local:636. This should return the certificate chain from the LDAP server. If it fails with something like write:errno=104, it usually means the server is not accepting the SSL connection—possibly because LDAPS is not enabled or there's no certificate configured. Also, make sure the port is open and accessible.

You can test it with: nc -zv XXX-XX-XX.xxxxxx.local 63 If the port is closed, the issue is likely network-related (firewall, misconfiguration, or LDAPS not listening).

Abdusamad Nazarov

unread,
Jul 23, 2025, 12:15:27 AM7/23/25
to Wazuh | Mailing List
Hello, Fabian Ruiz
Thank you for your answer
I run this commands: result
error01.png
Result command openssl s_client -connect XXX-XX-XX.xxxxxx.local:636
error02.png

Thanks

среда, 23 июля 2025 г. в 05:38:56 UTC+5, Fabian Ruiz:

Fabian Ruiz

unread,
Jul 24, 2025, 8:52:15 PM7/24/25
to Wazuh | Mailing List
Hi Abdusamad,

This indicates that LDAPS is not properly configured on the LDAP server, Although port 636 is listening, the server does not have a valid SSL certificate assigned for LDAPS. As a result, when the client attempts to initiate the handshake, the server immediately closes the connection.  

Abdusamad Nazarov

unread,
Jul 29, 2025, 2:14:47 AM7/29/25
to Wazuh | Mailing List
Hello,
error03.png
I have corrected what you said, now the error is as follows. Thank you in advance!

пятница, 25 июля 2025 г. в 05:52:15 UTC+5, Fabian Ruiz:

Abdusamad Nazarov

unread,
Jul 29, 2025, 3:33:13 AM7/29/25
to Wazuh | Mailing List
Pleaseerror05.png

вторник, 29 июля 2025 г. в 11:14:47 UTC+5, Abdusamad Nazarov:

Abdusamad Nazarov

unread,
Jul 29, 2025, 3:33:21 AM7/29/25
to Wazuh | Mailing List
There is an error in this area, where exactly I did not find everything according to the document

вторник, 29 июля 2025 г. в 11:14:47 UTC+5, Abdusamad Nazarov:
Hello,
error04.png

Fabian Ruiz

unread,
Jul 30, 2025, 9:09:31 PM7/30/25
to Wazuh | Mailing List
Hi  Abdusamad,

It seems that your YAML format is not correct, which is why you are having problems with this. Organize your YAML format to verify that this is the problem.

Abdusamad Nazarov

unread,
Jul 31, 2025, 2:03:03 AM7/31/25
to Wazuh | Mailing List

Hello Fabian Ruiz,
I fixed it via the website https://www.yamllint.com/
Now another problem:  ERR: Unable to read type from file

Thank You!

четверг, 31 июля 2025 г. в 06:09:31 UTC+5, Fabian Ruiz:
error06.png

Abdusamad Nazarov

unread,
Aug 19, 2025, 11:50:46 PM8/19/25
to Wazuh | Mailing List
Hello, Does anyone know what the problem is?
Снимок экрана 2025-08-20 083933.png
thanks
четверг, 31 июля 2025 г. в 11:03:03 UTC+5, Abdusamad Nazarov:
Reply all
Reply to author
Forward
0 new messages