Ubuntu: ldaps connections failing from keystone after upgrade to zed
Bug #2009484 reported by
Dr. Jens Harbott
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla |
Fix Released
|
Medium
|
Rafal Lewandowski | ||
Antelope |
Fix Released
|
Medium
|
Rafal Lewandowski | ||
Zed |
Fix Released
|
Undecided
|
Rafal Lewandowski |
Bug Description
After upgrading from yoga to zed, connections from keystone to a ldaps:// backend are failing with a certificate validation error. Investigation shows that the libldap-common package, which contains /etc/ldap/ldap.conf which in contains the relevant configuration
# TLS certificates (needed for GnuTLS)
TLS_CACERT /etc/ssl/
has been demoted from a depends: to a recommends: status for libldap in 22.04. The solution would be to explicitly install libldap-common into the keystone container.
Changed in kolla: | |
importance: | Undecided → Medium |
status: | New → Triaged |
Changed in kolla: | |
assignee: | nobody → Rafal Lewandowski (ravlew) |
no longer affects: | kolla/yoga |
no longer affects: | kolla/xena |
no longer affects: | kolla/wallaby |
To post a comment you must log in.
Fix proposed to branch: master /review. opendev. org/c/openstack /kolla/ +/878825
Review: https:/