SSL and LDAP shenanigans

The company I work for in their infinte wisdom have decided to change their authentication methods for LDAP. The change iinvolves restricting binds to sessions which are connected over SSL instead of normal LDAP connections.

This seems sensible enough but when you have 8 bajillion applications all using different authentication mechanisms (but still tied to LDAP) and all suing different languages then it becomes a bit of a nightmare ot have to convert them all over when you’re a one man team!

In particular i’ve been having major problems the last two weeks getting perl’s Net::LDAP module to securely connect probably due to issues with dependencies on the box it’s running from. A breakthrough today though was to actually get OpenSSL to successfully connect on it’s own so I’m finally making progress at least after almost 2 weeks of banging my head against a brick wall. I’m probably gonna have to back out IO:Socket:SSL and Net::SSLeay though as i’m sure that they havent been installed/built properly and thats whats causing the issues.

Oh well back to the grind

Edit : This was supposed to be posted two days ago but i forgot to publish it….noob! So by way of an update I finally got this all working today after a full 2 weeks of banging my head against a brick wall. Ironically, the perl code I wrote at the very start was fine (so i wasted about 3 days playing around with that!) and it was issues with the build of OpenSSL and the perl modules that was causing problems in addition to some certificate snafu’s. All sorted now so i’m off to plan my weekend of kilt hunting for the fast approaching Steve and Jill’s wedding.