Home > mailing lists

troubleshooting postgresql ldap authentication - Mailing list pgsql-general

From	Chris Stephens
Subject	troubleshooting postgresql ldap authentication
Date	June 9, 2020 00:05:06
Msg-id	CAEFL0swMzqaYZUYLGVa2H9=nqTomVBedRNac=_oAjgdw9PNSvw@mail.gmail.com Whole thread Raw
Responses	Re: troubleshooting postgresql ldap authentication (Thomas Munro <thomas.munro@gmail.com>) Re: troubleshooting postgresql ldap authentication (Paul Förster <paul.foerster@gmail.com>)
List	pgsql-general

Tree view

posgresql 12

centos 7

i am trying to configure ldap authentication.

i have the following pg_hba.conf entry (server and basedn are correct but not shown):

hostssl all all 0.0.0.0/0 ldap ldapserver="ldaps://xxx" ldapbasedn="yyy" ldaptls=1

when i attempt to authenticate, i see the following in pg logs:

2020-06-08 15:58:43 CDT [20235]: [1-1] user=[unknown],db=[unknown],app=[unknown],client=zzz LOG: connection received: host=zzz port=12378
2020-06-08 15:58:43 CDT [20235]: [2-1] user=uuu,db=postgres,app=[unknown],client=zzz LOG: could not initialize LDAP: Bad parameter to an ldap routine
2020-06-08 15:58:43 CDT [20235]: [3-1] user=uuu,db=postgres,app=[unknown],client=zzz FATAL: LDAP authentication failed for user "uuu"
2020-06-08 15:58:43 CDT [20235]: [4-1] user=uuu,db=postgres,app=[unknown],client=zzz DETAIL: Connection matched pg_hba.conf line 90: "hostssl all all 0.0.0.0/0
ldap ldapserver="ldaps://xxx" ldapbasedn="yyy" ldaptls=1"

does anyone know what might be causing "LDAP: Bad parameter to an ldap routine"

ldapsearch works fine w/ the supplied ldapserver and base dn.

pgsql-general by date:

From: Koen De Groote
Date: 08 June 2020, 23:33:48
Subject: Re: Index no longer being used, destroying and recreating it restores use.

From: Michael Lewis
Date: 09 June 2020, 00:15:15
Subject: Re: Index no longer being used, destroying and recreating it restores use.

troubleshooting postgresql ldap authentication - Mailing list pgsql-general

Previous

Next