Evolution LDAP connection no TLS even when specified
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evolution (Ubuntu) |
Expired
|
Low
|
Unassigned |
Bug Description
Binary package hint: evolution
The first time I add an LDAP directory as an address book to Evolution, specifying TLS it will not attempt TLS.
To recreate bug:
'New address book'
'On LDAP servers'
'server.
'port: 389'
'Use secure connection: TLS'
'Login method: Use distinguished name'
'Login: <email address hidden>
'Search base: ou=Address Book,<email address hidden>
'Browse this book until limit reached'
After entering this information and clicking on the address book, Evolution will ask you for your password. After entering your password Evolution will give you this error:
"Error loading address book.
This address book cannot be opened. This either means that an incorrect URI was entered, or the server is unreachable.
Detailed error message: Other error"
LDAP will log this in it's logs:
"slapd[7741]: conn=22 fd=23 ACCEPT from IP=IPA.
"slapd[7741]: conn=22 op=0 BIND <email address hidden>
"slapd[7741]: conn=22 op=0 RESULT tag=97 err=13 text=confidenti
Because, in this case, the connection _has_ to be TLS to be successful.
A combination of setting the address book to 'No encryption' then back to 'TLS encryption' and restarting Evolution will result in Evolution initiating a TLS connection and the LDAP directory search being successful.
slapd[7741]: conn=26 fd=27 ACCEPT from IP=IPA.
slapd[7741]: conn=26 op=0 STARTTLS
slapd[7741]: conn=26 op=0 RESULT oid= err=0 text=
slapd[7741]: conn=26 fd=27 TLS established tls_ssf=128 ssf=128
slapd[7741]: conn=26 op=1 BIND <email address hidden>
slapd[7741]: conn=26 op=1 BIND <email address hidden>
This bug is an upstream one and it would be quite helpful if somebody experiencing it could send the bug the to the people writing the software. You can learn more about how to do this for various upstreams at https:/ /wiki.ubuntu. com/Bugs/ Upstream/ GNOME . Thanks in advance!