BadCertificate Error
# troubleshootingn
Needle
08/13/2023, 2:15 AMHere's a brand new thread for you! Please keep the discussion for this problem in this thread.
r
remdogkap
08/13/2023, 2:24 AMalso what is the difference between TLS and StartTLS and is it possible to use StartTLS between lldap and authelia? I a memory of reading it isn't
remdogkap
08/13/2023, 3:06 AMI actually have some more questions
1. Why is it saying I am getting LDAP requests when as far as I know I have nothing but LLDAP running
2. I am having trouble logging in. I passed a file with a password in it using docker secrets and set the default name to admin, but it won't let me in. Does the password need to be hashed?
3. When I try to set the IP address to one that is open on my home network I get os error 99. Does this have to do with it being in a docker container?
n
nitnelave
08/13/2023, 4:35 AMAlright, I'll try to answer your questions in order:
- BadCertificate means that the certificate format is not supported (too old/Incompatible with rustls) or you passed the wrong files (swapped the private and public parts?), something like that.
- StartTls is an unencrypted connection that gets upgraded to an encrypted one. Not supported by LLDAP.
- you are getting LDAP requests probably every exactly 5 min, due to the healthcheck of the container
- without your docker configuration and LLDAP verbose logs, it's hard to say why you can't log in.
- where are you setting the IP address? In the LLDAP config for listening? This should pretty much always be 0.0.0.0 or the IPv6 equivalent.
- I haven't personally tried authelia with LLDAP, but I don't see why TLS shouldn't work
r
remdogkap
08/13/2023, 4:36 AMthank you!
remdogkap
08/13/2023, 4:38 AM- I'll try recreating the certificate
- I'm going to try to figure out why I can't log in some more before I go through the trouble of sending that stuff
- I was setting the IP address in the LLDAP config for listening. I think I misinterpreted what it does. You can scratch this question