Is there a way to avoid certification verification while keeping the LDAP communication encrypted in OpenShift?

Solution Verified - Updated -

Issue

  • When attempting to login into OpenShift using an LDAP Identity Provider, the login fails and this error appears:

    AuthenticationError: LDAP Result Code 200 "": TLS handshake failed (x509: certificate is valid for example.com, not ldap-server.example.com)

    or

    AuthenticationError: LDAP Result Code 200 "Network Error": TLS handshake failed (x509: cannot validate certificate for 10.0.0.1 because it doesn't contain any IP SANs)

  • Is there a way to avoid certificate verification while keeping the LDAP communication encrypted?

Environment

  • Red Hat OpenShift Container Platform (OCP)
    • 4.x
    • 3.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content