The setup:
On a physical hardware - not a virtual machine - clean install of NS 7.8.2003 & just enable nsdc.
LDAP can be queried from NS host via: ldapsearch -H ldaps://<nsdc IP> -x -w <Bind Password> -D <Bind DN> -b <Basis DN>
The same query form the green network fails.
Alltough the port is open: nc -zv <Active Directory IP> 636 ==> success
Impact: Can not bind client or use AD users/groups external
a guess what it might be:
The Samba container is stated via: systemd-nspawn --quiet --keep-unit --boot --network-bridge=br0 --machine=nsdc --capability=CAP_SYS_TIME
From the systemd-nspawn man page: --network-bridge= … implies --network-veth & network-veth implies --private-network
I can’t reach the LDAPS in the AD NSDC from the LAN in a debian virtualbox machine, we are migrating all apps (GPLI and paperless, development environment) to virtualmachines, step previous to NS8 on new servers this year ).
This is the command that works in the AD NSDC (nethserver machine) but in debian it keeps waiting till serveral minutes: