When upgrading to version 6.4 I stumbled upon the problem that users couldn’t login anymore when using the ldap_authentication module. Comparing the differences I remembered that I had manually changed the module because I needed starttls()
to be able to bind to the ldap server.
In my case the ldap server is a Samba Active Directory server which does not allow unencrypted connections.
By adding starttls()
in the different places I was able to connect and authenticate users.
What is the best way forward? Should starttls
be a configuration option which should be added to the trytond.conf
?