Michael Adams
Michael Adams
Just saw this on TLDR, and yeah, v6 support would be nice. And yeah, you might actually need to split past /64 (some virtual services use /80 or /112).
@cfredericksen Hey there. I don't recall seeing that option when I set the field...
@coudot Thank you for clarifying the issue wasn't TLS 1.3; that was something I know is an issue with a lot of software out there. Is there good documentation or...
Thank you for that. Running into a completely different issue now: it's saying my new password is "insufficient quality". Using same complexity rules I had in SSP 1.5; guess that's...
@coudot wanted to give you an update. I rebuilt the config file against the new version, and then began tweaking things. - "insufficient quality" error went away when I used...
Thank you for the follow-up on this. I see in the documentation that there were additional delegate rules I should have in place; I will make that correction on my...
Exported the CA cert to a PEM file, and ran **openssl s_client -CAfile** ... ``` CONNECTED(00000003) --- Certificate chain 0 s: i:DC = loc, DC = redacted, CN = CIUSSJCA01...
Okay... 1. Dropped the CA into **/usr/local/share/ca-certificates** as a .crt file. 2. Ran **update-ca-certificates -v -f** to ensure the CA was loaded properly. 3. Checked the OpenSSL cipher list with...
@coudot Hey, think I found a workaround/fix for this, that you might want to add to your documentation. Per [this obscure PHP comment](https://www.php.net/manual/en/function.ldap-bind.php#118543), it turns out that LDAP(S) is still...
@davidcoutadeur Sorry for the delayed response. So setting REQCERT to "demand" caused LDAP failure. I then set it back to "allow" and disabled the CIPHER_SUITE env; also failure. Having "allow"...