user_attr => {},
port => { optional => 1 },
secure => { optional => 1 },
+ sslversion => { optional => 1 },
default => { optional => 1 },
comment => { optional => 1 },
tfa => { optional => 1 },
$ldap_args{verify} = 'none';
}
+ if ($config->{secure}) {
+ $ldap_args{sslversion} = $config->{sslversion} || 'tlsv1_2';
+ }
+
my $ldap = Net::LDAP->new($conn_string, %ldap_args) || die "$@\n";
if (my $bind_dn = $config->{bind_dn}) {
my $err = $@;
return 1 if !$err;
die $err if !$config->{server2};
- &$authenticate_user_ldap($config, $config->{server2}, $username, $password);
+ &$authenticate_user_ldap($config, $config->{server2}, $username, $password, $realm);
}
1;