ldap not confirms server cert

[alex-eri]

This issue is unique.

• I have used the search tool and did not find an issue describing my bug.

Operating System of DocumentServer

Linux (DEB package)

Version information

v.8.2.1.38

Expected Behavior

Join ldap with ssl or starttls

Actual Behavior

ldap answers

{
    "response": {
        "completed": true,
        "id": "baa50ed0-b60d-45df-871e-9dc6e82fa65e",
        "status": "Loading LDAP base info",
        "error": "Certificate verification",
        "warning": "",
        "percents": 100,
        "certificateConfirmRequest": "{\"Approved\":false,\"Requested\":true,\"SerialNumber\":\"116A4867\",\"IssuerName\":\"CN=AD.slvdm.lan, OU=Samba - temporary autogenerated CA certificate, O=Samba Administration\",\"SubjectName\":\"CN=AD.slvdm.lan, OU=Samba - temporary autogenerated HOST certificate, O=Samba Administration\",\"ValidFrom\":\"2024-11-28T13:03:13\",\"ValidUntil\":\"2026-10-29T13:03:13\",\"Hash\":\"344D5A26F81781C47AE58E49451C853D2C0A5D05\",\"CertificateErrors\":[-2146762488]}",
        "source": "",
        "operationType": "Save"
    },
    "count": 1,
    "links": [
        {
            "href": "http://192.168.33.9/api/2.0/settings/ldap/status",
            "action": "GET"
        }
    ],
    "status": 0,
    "statusCode": 200
}

then ssov2 error and page locked

{
    "response": {
        "enableSso": false,
        "idpSettings": {
            "entityId": "",
            "ssoUrl": "",
            "ssoBinding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
            "sloUrl": "",
            "sloBinding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
            "nameIdFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        },
        "idpCertificates": [],
        "idpCertificateAdvanced": {
            "verifyAlgorithm": "http://www.w3.org/2000/09/xmldsig#rsa-sha1",
            "verifyAuthResponsesSign": false,
            "verifyLogoutRequestsSign": false,
            "verifyLogoutResponsesSign": false,
            "decryptAlgorithm": "http://www.w3.org/2001/04/xmlenc#aes128-cbc",
            "decryptAssertions": false
        },
        "spLoginLabel": "Single Sign-on",
        "spCertificates": [],
        "spCertificateAdvanced": {
            "signingAlgorithm": "http://www.w3.org/2000/09/xmldsig#rsa-sha1",
            "signAuthRequests": false,
            "signLogoutRequests": false,
            "signLogoutResponses": false,
            "encryptAlgorithm": "http://www.w3.org/2001/04/xmlenc#aes128-cbc",
            "decryptAlgorithm": "http://www.w3.org/2001/04/xmlenc#aes128-cbc",
            "encryptAssertions": false
        },
        "fieldMapping": {
            "firstName": "givenName",
            "lastName": "sn",
            "email": "mail",
            "title": "title",
            "location": "l",
            "phone": "mobile"
        },
        "hideAuthPage": false,
        "usersType": 4
    },
    "count": 1,
    "links": [
        {
            "href": "http://192.168.33.9/api/2.0/settings/ssov2",
            "action": "GET"
        }
    ],
    "status": 0,
    "statusCode": 200
}

something went wrong full sreen error page appears

Reproduction Steps

No response

Additional information

No response

[LuckySpecialist]

Hi @alex-eri, can you describe in more detail the configuration, which SP, IdP are used and the LDAP server?