graphite-dev team mailing list archive

[Jimmy <question189254@xxxxxxxxxxxxxxxxxxxxx>]

Question #189254 on Graphite changed:
https://answers.launchpad.net/graphite/+question/189254

    Status: Open => Solved

Jimmy confirmed that the question is solved:
There were actually 2 problems.

The "Premature end of script headers" error is due to not updating
"ldap" => "ldaps"

LDAP_URI = "ldaps://%s:%d/" % (LDAP_SERVER, LDAP_PORT)

The invalid cert issue is the 2nd error which is pasted below. The
workaround is to add the 2 lines that Jeremy listed above.

[Wed Mar 07 13:31:32 2012] [error] Traceback (most recent call last):
[Wed Mar 07 13:31:32 2012] [error]   File "/opt/graphite/webapp/graphite/account/ldapBackend.py", line 25, in authenticate
[Wed Mar 07 13:31:32 2012] [error]   File "/usr/lib64/python2.4/site-packages/ldap/ldapobject.py", line 175, in simple_bind_s
[Wed Mar 07 13:31:32 2012] [error]     msgid = self.simple_bind(who,cred,serverctrls,clientctrls)
[Wed Mar 07 13:31:32 2012] [error]   File "/usr/lib64/python2.4/site-packages/ldap/ldapobject.py", line 169, in simple_bind
[Wed Mar 07 13:31:32 2012] [error]     return self._ldap_call(self._l.simple_bind,who,cred,EncodeControlTuples(serverctrls),EncodeControlTuples(clientctrls))
[Wed Mar 07 13:31:32 2012] [error]   File "/usr/lib64/python2.4/site-packages/ldap/ldapobject.py", line 94, in _ldap_call
[Wed Mar 07 13:31:32 2012] [error]     result = func(*args,**kwargs)
[Wed Mar 07 13:31:32 2012] [error] SERVER_DOWN: {'info': 'error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed', 'desc': "Can't contact LDAP server"}


Everything works now
Thanks Jeremy!

-- 
You received this question notification because you are a member of
graphite-dev, which is an answer contact for Graphite.