In this screenshot , are reported the parameter neth7 ldap for autenticate users. This scheme is a valid scheme , bat I replace or copy similar scheme in ns8 not connect to ldap . I remember a long time ago , I changed one parameter for samba encrypt …
You have two options:
- enable tls in pfsense without cert verification, or by uploading the ad cert in pfsense trust store. Use your LAN IP and port with TLS, like 3269 (global catalog) or 636 User domains — NS8 documentation
- customize smb.conf to disable tls signing requirement in the ldap service ns8-samba/samba-dc at main · NethServer/ns8-samba · GitHub
