Could not bind to any LDAP server: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate in certificate chain)
LDAP Configuration Errors: Could not bind to any LDAP server: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate in certificate chain)
Overview: This Article Addresses An LDAP Configuration Error:The error message "Could Not Bind To Any LDAP Server: Error:14090086
Routines:ssl3_get_server_certificate Verify Failed (Self Signed Certificate In Certificate Chain)" occurs due to a self-signed certificate verification failure. To resolve this issue, configure the LDAP settings in Ezeelogin's GUI and update the necessary configuration files to bypass certificate verification. For a permanent fix, replace the self-signed certificate with a valid CA, CERT, and KEY.
If you are getting the above error when you configured ldap from ezeelogin gui >settings >ldap, Try the following steps
Step 1. Add the following to /etc/ldap/ldap.conf on client machine (ezeelogin installed server)
TLS_REQCERT never
Step 2. Add the following to /etc/sssd/sssd.conf
Step 3. This error occurs while ceritificate verifications fails as you are using a self signed certificate. Putting a valid CA,CERT and KEY will fix the issue.
Related Articles:
How to solve LDAP bind error: Invalid credentials ?
Could not authenticate with any LDAP server
Can we map existing user group in ldap to Ezeelogin as Ezeelogin user group?