Bug 44608

Summary: CONNECT_ERROR during authentication in UMC-Server
Product: UCS Reporter: Florian Best <best>
Component: UMC (Generic)Assignee: UMC maintainers <umc-maintainers>
Status: RESOLVED DUPLICATE QA Contact: UMC maintainers <umc-maintainers>
Severity: normal    
Priority: P5    
Version: UCS 4.2   
Target Milestone: ---   
Hardware: Other   
OS: Linux   
What kind of report is it?: Bug Report What type of bug is this?: 3: Simply Wrong: The implementation doesn't match the docu
Who will be affected by this bug?: 1: Will affect a very few installed domains How will those affected feel about the bug?: 2: A Pain – users won’t like this once they notice it
User Pain: 0.034 Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: 2017051621000426 Bug group (optional): Error handling, External feedback
Max CVSS v3 score:

Description Florian Best univentionstaff 2017-05-16 13:17:22 CEST 
Execution of command '' has failed:

Traceback (most recent call last):
  File "%PY2.7%/univention/management/console/base.py", line 249, in execute
    function.__func__(self, request, *args, **kwargs)
  File "%PY2.7%/univention/management/console/protocol/session.py", line 957, in _authentication_finished2
    self.processor.set_credentials(**self.__credentials)
  File "%PY2.7%/univention/management/console/protocol/session.py", line 171, in set_credentials
    self._search_user_dn()
  File "%PY2.7%/univention/management/console/protocol/session.py", line 190, in _search_user_dn
    if self.lo and self._username:
  File "%PY2.7%/univention/management/console/protocol/session.py", line 152, in lo
    return get_machine_connection(write=False)[0]
  File "%PY2.7%/univention/management/console/ldap.py", line 100, in get_machine_connection
    return connection()
  File "%PY2.7%/univention/management/console/ldap.py", line 140, in _decorated
    kwargs[loarg], kwargs[poarg] = lo, po = getter()
  File "%PY2.7%/univention/management/console/ldap.py", line 130, in getter
    conn = connection()
  File "%PY2.7%/univention/management/console/ldap.py", line 63, in connection
    return _getMachineConnection(**kwargs)
  File "%PY2.7%/univention/admin/uldap.py", line 147, in getMachineConnection
    lo = univention.uldap.getMachineConnection(start_tls, decode_ignorelist=decode_ignorelist, ldap_master=ldap_master)
  File "%PY2.7%/univention/uldap.py", line 91, in getMachineConnection
    return access(host=ucr['ldap/server/name'], port=port, base=ucr['ldap/base'], binddn=ucr['ldap/hostdn'], bindpw=bindpw, start_tls=start_tls,
decode_ignorelist=decode_ignorelist, reconnect=reconnect)
  File "%PY2.7%/univention/uldap.py", line 152, in __init__
    self.__open(ca_certfile)
  File "%PY2.7%/univention/uldap.py", line 202, in __open
    self.lo.start_tls_s()
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 884, in start_tls_s
    res = self._apply_method_s(SimpleLDAPObject.start_tls_s,*args,**kwargs)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 860, in _apply_method_s
    return func(self,*args,**kwargs)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 571, in start_tls_s
    return self._ldap_call(self._l.start_tls_s)
  File "/usr/lib/python2.7/dist-packages/ldap/ldapobject.py", line 106, in _ldap_call
    result = func(*args,**kwargs)
CONNECT_ERROR: {'info': 'error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (self signed certificate in certificate chain)', 'desc': 'Connect error'}

Role: domaincontroller_backup
Comment 1 Florian Best univentionstaff 2017-07-17 16:36:08 CEST 

*** This bug has been marked as a duplicate of bug 39963 ***