hi,
i now tested it successfully
my /etc/pve/domains.cfg looks like this:
----8<----
ldap: google
base_dn dc=anguslab,dc=io
server1 ldap.google.com
user_attr uid
verify 1
cert /root/google.crt
certkey /root/google.key
default 0
port 636
secure 1
---->8----
important are three settings:
user_attr uid
secure 1
verify 1 (this was missing)
you need all 3 of those for it to work (verify is necessary so that our
code actually uses the client cert/key)
now i can login with the user/password combo and the 'google' realm
_______________________________________________
pve-devel mailing list
pve-devel@pve.proxmox.com
https://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
