Bug 35253 - TLS / SSL connection without the root certificate
TLS / SSL connection without the root certificate
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: AD Connector
UCS 3.2
Other Linux
: P5 normal (vote)
: UCS 3.2-2-errata
Assigned To: Stefan Gohmann
Felix Botner
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-07-04 06:55 CEST by Stefan Gohmann
Modified: 2014-08-07 17:44 CEST (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Gohmann univentionstaff 2014-07-04 06:55:29 CEST
See Bug #35091. It would be nice if the root certificate from AD is not required for creating a TLS connection. Sure, it should be possible to upload and user the root certificate and in this case the certificate chain should be checked.
Comment 1 Stefan Gohmann univentionstaff 2014-07-07 08:53:30 CEST
It is no possible to activate SSL even if the root certificate is not given.

Code: r51507
YAML: r51543 + r51544
Comment 2 Felix Botner univentionstaff 2014-07-07 11:57:42 CEST
OK - ad-connectors ssl works with and without the AD root certificate
OK - YAML
Comment 3 Janek Walkenhorst univentionstaff 2014-08-07 17:44:34 CEST
http://errata.univention.de/ucs/3.2/162.html