Could not bind to any LDAP server: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate in certificate chain)
LDAP Configuration Errors: Could not bind to any LDAP server: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate in certificate chain)
Overview: This Article Addresses An LDAP Configuration Error:The error message "Could Not Bind To Any LDAP Server: Error:14090086
Routines:ssl3_get_server_certificate Verify Failed (Self Signed Certificate In Certificate Chain)" occurs due to a self-signed certificate verification failure. To resolve this issue, configure the LDAP settings in Ezeelogin's GUI and update the necessary configuration files to bypass certificate verification. For a permanent fix, replace the self-signed certificate with a valid CA, CERT, and KEY.
If you are getting the above error when you configured ldap from ezeelogin gui >settings >ldap, Try the following steps
Step 1. Add the following to /etc/ldap/ldap.conf on client machine (ezeelogin installed server)
TLS_REQCERT never
Step 2. Add the following to /etc/sssd/sssd.conf
Step 3. This error occurs while ceritificate verifications fails as you are using a self signed certificate. Putting a valid CA,CERT and KEY will fix the issue.
Related Articles
Could not authenticate with any LDAP server
Can we map existing user group in ldap to Ezeelogin as Ezeelogin user group?