Zabbix 7.0.x LDAP authentication breaks against older FreeIPA servers?
Upgraded to Zabbix 7, and it seems LDAP authentication broke in some unique way.
We are running Redhat IPA, version ipa-server-4.6.8-5 -- which I gather is based on an older version of FreeIPA, dare I assume 4.6? (Yes, its on the list to upgrade)
When authentication is attempted, the Web UI returns "unable to bind to LDAP server".
IPA logs show:
[04/Sep/2024:12:36:32.003794143 -0400] conn=16174830 fd=238 slot=238 connection from 172.17.9.31 to 172.17.9.4
[04/Sep/2024:12:36:32.004131961 -0400] conn=16174830 op=0 SRCH base="" scope=0 filter="(objectClass=*)" attrs="namingContexts"
[04/Sep/2024:12:36:32.005703912 -0400] conn=16174830 op=0 RESULT err=0 tag=101 nentries=1 wtime=0.000253876 optime=0.001572430 etime=0.001824737
[04/Sep/2024:12:36:32.005958708 -0400] conn=16174830 op=1 UNBIND
[04/Sep/2024:12:36:32.005978045 -0400] conn=16174830 op=1 fd=238 closed - U1
Password for the bind account is valid, so I'm a bit stymied there. Anything else this could be?
We are running Redhat IPA, version ipa-server-4.6.8-5 -- which I gather is based on an older version of FreeIPA, dare I assume 4.6? (Yes, its on the list to upgrade)
When authentication is attempted, the Web UI returns "unable to bind to LDAP server".
IPA logs show:
[04/Sep/2024:12:36:32.003794143 -0400] conn=16174830 fd=238 slot=238 connection from 172.17.9.31 to 172.17.9.4
[04/Sep/2024:12:36:32.004131961 -0400] conn=16174830 op=0 SRCH base="" scope=0 filter="(objectClass=*)" attrs="namingContexts"
[04/Sep/2024:12:36:32.005703912 -0400] conn=16174830 op=0 RESULT err=0 tag=101 nentries=1 wtime=0.000253876 optime=0.001572430 etime=0.001824737
[04/Sep/2024:12:36:32.005958708 -0400] conn=16174830 op=1 UNBIND
[04/Sep/2024:12:36:32.005978045 -0400] conn=16174830 op=1 fd=238 closed - U1
Password for the bind account is valid, so I'm a bit stymied there. Anything else this could be?