LDAP connection code does not provide ldap.set_option(ldap.OPT_X_TLS_CACERTFILE) for ldaps protocol
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Wishlist
|
Nathan Kinder | ||
Icehouse |
Fix Released
|
Wishlist
|
Nathan Kinder |
Bug Description
The HP Enterprise Directory LDAP servers require a ca certificate file for ldaps connections. Sample working Python code:
ldap_client = ldap.initialize
filter = '(uid=mark.m*)'
attrs = ['cn', 'mail', 'uid', 'hpStatus']
r = ldap_client.
for dn, entry in r:
print 'dn=', repr(dn)
for k in entry.keys():
The current H-2 " keystone/
Changed in keystone: | |
importance: | Undecided → Wishlist |
status: | New → Triaged |
tags: |
added: ldap removed: backend keystone ldaps split |
tags: | added: icehouse-backport-potential |
Changed in keystone: | |
milestone: | none → juno-rc1 |
summary: |
- Split backend does not provide - ldap.set_option(ldap.OPT_X_TLS_CACERTFILE) for ldaps connections + LDAP connection code does not provide + ldap.set_option(ldap.OPT_X_TLS_CACERTFILE) for ldaps protocol |
Changed in keystone: | |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | juno-rc1 → 2014.2 |
Do not have access to HP ED, so assigning to gyee, who is at HP.