How to disable StartTLS encription on OpenLDAP connection

kamil · April 7, 2017, 10:04am

NethServer Version: 7.3.1611
Module: nethserver-directory

Hi All,

First, I would like to thank you for great work making NethServer solution.
I am using mine as a router and several service provider on OVH dedicated server.

What I need is to disable StartTLS encription on connections to OpenLDAP (nethserver-directory) on private (green) network side. I am able connect to directory by ApacheDirectoryStudio using ldap://privateip:389 with enabled StartTLS encription using cn=ldapservice,dc=directory,dc=nh Bind DN, but I need ability to connect to LDAP without StartTLS - just plain LDAP on 389 port.

I am completely lost in configuration how to disable StartTLS encription. Could somebody provide guide how to do it.

Thank you in advance.

davidep · April 7, 2017, 11:37am

You could bind anonymously! no starttls is required

kamil · April 10, 2017, 10:10am

Hello Davide!

Thank you for quick reply.
The client I want to integrate with LDAP is https://sandstorm.io/.
I configured anonymous bind, follow your advice and seems that the issue is at sandstorm software. Still, I am getting err=49, however other software works.
Thanks for the help.