Bug 35253 – TLS / SSL connection without the root certificate

Bug 35253 - TLS / SSL connection without the root certificate


Summary:	TLS / SSL connection without the root certificate

Status:	CLOSED FIXED

Product:	UCS
Classification:	Unclassified
Component:	AD Connector
Version:	UCS 3.2
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS 3.2-2-errata
Assigned To:	Stefan Gohmann
QA Contact:	Felix Botner

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2014-07-04 06:55 CEST by Stefan Gohmann
Modified:	2014-08-07 17:44 CEST (History)
CC List:	1 user (show)

See Also:
What kind of report is it?:	---
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Stefan Gohmann

2014-07-04 06:55:29 CEST

See Bug #35091. It would be nice if the root certificate from AD is not required for creating a TLS connection. Sure, it should be possible to upload and user the root certificate and in this case the certificate chain should be checked.

Comment 1 Stefan Gohmann

2014-07-07 08:53:30 CEST

It is no possible to activate SSL even if the root certificate is not given.

Code: r51507
YAML: r51543 + r51544

Comment 2 Felix Botner

2014-07-07 11:57:42 CEST

OK - ad-connectors ssl works with and without the AD root certificate
OK - YAML

Comment 3 Janek Walkenhorst

2014-08-07 17:44:34 CEST

http://errata.univention.de/ucs/3.2/162.html