Hi all,
we have a problem with Grafana and LDAPS. We are running version 10.10 on a Debian 11 System.
Setting up grafana with normal non SSL LDAP works fine but as soon as we change to LDAPS everything fails and noone can login anymore.
The grafana log tells this:
ogger=authn.service t=2023-09-25T12:19:52.824427129+02:00 level=warn msg=“Failed to authenticate request” client=auth.client.form error=“[password-auth.failed] failed to authenticate identity: tls: server sent certificate containing RSA key larger than 8192 bits\n[password-auth.invalid] invalid password”
logger=context userId=0 orgId=0 uname= t=2023-09-25T12:19:52.824550596+02:00 level=info msg=“Bad request” error=“[password-auth.failed] failed to authenticate identity: tls: server sent certificate containing RSA key larger than 8192 bits\n[password-auth.invalid] invalid password” remote_addr=10.50.50.21 traceID=
Our Grafana ldapS settings (NOT WORKING):
[[servers]]
host = “xxxx”
port = 636
use_ssl = true
start_tls = false
ssl_skip_verify = true
Our Grafana LDAP settings (WORKING):
[[servers]]
host = “xxxxx”
port = 389
use_ssl = false
start_tls = false
ssl_skip_verify = true
We do not use any certificate - we even have no.
A normal ldapsearch from commandline of our server to ldaps works fine.
Can anyone help in that?
Greetings,
Marja