Authentificating against AD via LDAPS for EspoCRM in Docker

Hi,

Disclaimer: I'm not a specialist in LDAP.

Espo uses Laminas\Ldap library that uses ldap php extension. Maybe this docs will help: https://docs.laminas.dev/laminas-aut.../adapter/ldap/. See "TLS and SSL" section.

Hello.

Any other suggestions?

I seen a few thread about people using LDAP, although it isn't flawless though (something about data synching) so LDAP does work.

My only suggestion would be to see if you can pinpoint where issue,

"is it my LDAP configuration" - recheck setting again, try with another system/software that you can get it to work with LDAP
"is it EspoCRM issue?" - try with a fresh installation on some developer/testing copy

I'm not sure if there any Public testing LDAP available, there is plenty of API/Rest API that can use. If there is one for LDAP you can give that a try (using the test server as your config) to see if it work, then slowly find out where the issue lies and work around that.

Thanks, but to be honest, some technicalities would help me more... For example, it's Debian that's used in the containers. It seems not to have openldap installed (which is allegedly used by the luminas-ldap), but nevertheless the CRM is capable of making LDAP queries. That means, that it uses something else. It'd help to learn what it is exactly...

Thanks to all for the suggestions.

In the end, it appears that the right path to the cert is

But for it to work one needs to install libldap-common lib as the current docker hub image doesn't have it:

So it's a bug and I hope the devs would fix it.