Details
-
Task
-
Resolution: Fixed
-
Major - P3
-
None
-
None
-
None
-
Fully Compatible
-
Security 2021-06-28, Security 2021-07-12, Security 2021-07-26
Description
If MongoLDAP is instructed to use TLS, it should verify TLS connectivity as a separate step before testing LDAP server reachability. This will help isolate issues around certificate validation.
Add a new command line option to ldap_options.idl to use for configuring the CA file.
"security.ldap.serverCAFile":
description: 'CA File for validating connection to LDAP server'
short_name: ldapServerCAFile
arg_vartype: String