0000467: tls handshake issue b/w alma linux ldap server and centos 7 ldap server after upgrade to alma - MantisBT

ID	Project	Category	View Status	Date Submitted	Last Update

0000467	AlmaLinux-8	openldap	public	2024-05-14 11:32	2024-05-14 11:32

Reporter	kishore	Assigned To
Priority	urgent	Severity	block	Reproducibility	unable to reproduce
Status	new	Resolution	open
Platform	Linux	OS	AlmaLinux	OS Version	8.9

Summary	0000467: tls handshake issue b/w alma linux ldap server and centos 7 ldap server after upgrade to alma
Description	We need assistance regarding alma Linux 8 with openssl & openldap tls issue. as soon as we upgraded one of ldap server to alma 8, it stopped syncing with Master ldap server which is on centos 7. As we observed, openssl & openldap versions have been changed in alma 8 and ldap server is showing protocol tls 1.3 where as ldap master is in tls 1.2, seems like which may causing issue. Need assistance to fix the issue. Error : slap_client_connect: URI=ldap://master2-itshared-ldap-ue1.devops.awspr Warning, ldap_start_tls failed (-11) slap_client_connect: URI=ldap://master2-itshared-ldap-ue1.devops.awspr DN="cn=admin,dc=wce,dc=ibm,dc=com" ldap_sasl_bind_s failed (-1) slap_client_connect: URI=ldap://master1-itshared-ldap-ue1.devops.awspr Warning, ldap_start_tls failed (-11) slap_client_connect: URI=ldap://master1-itshared-ldap-ue1.devops.awspr DN="cn=admin,dc=wce,dc=ibm,dc=com" ldap_sasl_bind_s failed (-1) slap_client_connect: URI=ldap://master3-itshared-ldap-ue1.devops.awspr Warning, ldap_start_tls failed (-11) slap_client_connect: URI=ldap://master3-itshared-ldap-ue1.devops.awspr DN="cn=admin,dc=wce,dc=ibm,dc=com" ldap_sasl_bind_s failed (-1) slap_client_connect: URI=ldap://master2-itshared-ldap-ue1.devops.awspr Warning, ldap_start_tls failed (-11) slap_client_connect: URI=ldap://master2-itshared-ldap-ue1.devops.awspr DN="cn=admin,dc=wce,d
Tags	No tags attached.

abrt_hash
URL

Date Modified	Username	Field	Change
2024-05-14 11:32	kishore	New Issue