Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-57682

Enhance mongoldap to verify TLS connectivity to LDAP servers

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Major - P3 Major - P3
    • 5.1.0-rc0
    • None
    • None
    • None
    • Fully Compatible
    • Security 2021-06-28, Security 2021-07-12, Security 2021-07-26

    Description

      If MongoLDAP is instructed to use TLS, it should verify TLS connectivity as a separate step before testing LDAP server reachability. This will help isolate issues around certificate validation.

      Add a new command line option to ldap_options.idl to use for configuring the CA file.

          "security.ldap.serverCAFile":
              description: 'CA File for validating connection to LDAP server'
              short_name: ldapServerCAFile
              arg_vartype: String

      Attachments

        Activity

          People

            aldo.aguilar@mongodb.com Aldo Aguilar
            mark.benvenuto@mongodb.com Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: