[user@linuxserver]# ldapwhoami -Y EXTERNAL -H ldap://server.dummydomain.test -d 9 -ZZ ldap_url_parse_ext(ldap://server.dummydomain.test) ldap_create ldap_url_parse_ext(ldap://server.dummydomain.test:389/??base) ldap_extended_operation_s ldap_extended_operation ldap_send_initial_request ldap_new_connection 1 1 0 ldap_int_open_connection ldap_connect_to_host: TCP server.dummydomain.test:389 ldap_new_socket: 3 ldap_prepare_socket: 3 ldap_connect_to_host: Trying 10.10.1.168:389 ldap_pvt_connect: fd: 3 tm: -1 async: 0 attempting to connect: connect success ldap_open_defconn: successful ldap_send_server_request ber_scanf fmt ({it) ber: ber_scanf fmt ({) ber: ber_flush2: 31 bytes to sd 3 ldap_result ld 0x559c800da3c0 msgid 1 wait4msg ld 0x559c800da3c0 msgid 1 (infinite timeout) wait4msg continue ld 0x559c800da3c0 msgid 1 all 1 ** ld 0x559c800da3c0 Connections: * host: server.dummydomain.test port: 389 (default) refcnt: 2 status: Connected last used: Tue Sep 13 11:15:52 2022 ** ld 0x559c800da3c0 Outstanding Requests: * msgid 1, origid 1, status InProgress outstanding referrals 0, parent count 0 ld 0x559c800da3c0 request count 1 (abandoned 0) ** ld 0x559c800da3c0 Response Queue: Empty ld 0x559c800da3c0 response count 0 ldap_chkResponseList ld 0x559c800da3c0 msgid 1 all 1 ldap_chkResponseList returns ld 0x559c800da3c0 NULL ldap_int_select read1msg: ld 0x559c800da3c0 msgid 1 all 1 ber_get_next ber_get_next: tag 0x30 len 40 contents: read1msg: ld 0x559c800da3c0 msgid 1 message type extended-result ber_scanf fmt ({eAA) ber: read1msg: ld 0x559c800da3c0 0 new referrals read1msg: mark request completed, ld 0x559c800da3c0 msgid 1 request done: ld 0x559c800da3c0 msgid 1 res_errno: 0, res_error: <>, res_matched: <> ldap_free_request (origid 1, msgid 1) ldap_parse_extended_result ber_scanf fmt ({eAA) ber: ber_scanf fmt (a) ber: ldap_parse_result ber_scanf fmt ({iAA) ber: ber_scanf fmt (x) ber: ber_scanf fmt (}) ber: ldap_msgfree TLSMC: MozNSS compatibility interception begins. tlsmc_intercept_initialization: INFO: entry options follow: tlsmc_intercept_initialization: INFO: cacertdir = `/etc/openldap/certs' tlsmc_intercept_initialization: INFO: certfile = `/etc/openldap/certs/usercert.pem' tlsmc_intercept_initialization: INFO: keyfile = `/etc/openldap/certs/private.key' tlsmc_convert: INFO: trying to open NSS DB with CACertDir = `/etc/openldap/certs'. tlsmc_open_nssdb: INFO: trying to initialize moznss using security dir `/etc/openldap/certs` prefix ``. tlsmc_open_nssdb: INFO: initialized MozNSS context. tlsmc_convert: INFO: trying with PEM dir = `/tmp/openldap-tlsmc-certs--92C80993AA7FF40F75FD4431F116948728F89C08320D4C95310B5C57E415B2C6'. tlsmc_convert: INFO: using the existing PEM dir. tlsmc_intercept_initialization: INFO: altered options follow: tlsmc_intercept_initialization: INFO: cacertdir = `/tmp/openldap-tlsmc-certs--92C80993AA7FF40F75FD4431F116948728F89C08320D4C95310B5C57E415B2C6/cacerts' tlsmc_intercept_initialization: INFO: certfile = `/tmp/openldap-tlsmc-certs--92C80993AA7FF40F75FD4431F116948728F89C08320D4C95310B5C57E415B2C6/cert.pem' tlsmc_intercept_initialization: INFO: keyfile = `/tmp/openldap-tlsmc-certs--92C80993AA7FF40F75FD4431F116948728F89C08320D4C95310B5C57E415B2C6/key.pem' tlsmc_intercept_initialization: INFO: successfully intercepted TLS initialization. Continuing with OpenSSL only. TLSMC: MozNSS compatibility interception ends. TLS trace: SSL_connect:before/connect initialization TLS trace: SSL_connect:SSLv2/v3 write client hello A TLS trace: SSL_connect:SSLv3 read server hello A TLS certificate verification: depth: 1, err: 0, subject: /DC=test/DC=dummydomain/CN=DummyDomain-Server-CA, issuer: /DC=test/DC=dummydomain/CN=DummyDomain-Server-CA TLS certificate verification: depth: 0, err: 0, subject: /CN=server.dummydomain.test, issuer: /DC=test/DC=dummydomain/CN=DummyDomain-Server-CA TLS trace: SSL_connect:SSLv3 read server certificate A TLS trace: SSL_connect:SSLv3 read server key exchange A TLS trace: SSL_connect:SSLv3 read server certificate request A TLS trace: SSL_connect:SSLv3 read server done A TLS trace: SSL_connect:SSLv3 write client certificate A TLS trace: SSL_connect:SSLv3 write client key exchange A TLS trace: SSL_connect:SSLv3 write certificate verify A TLS trace: SSL_connect:SSLv3 write change cipher spec A TLS trace: SSL_connect:SSLv3 write finished A TLS trace: SSL_connect:SSLv3 flush data TLS trace: SSL_connect:SSLv3 read finished A ldap_sasl_interactive_bind: user selected: EXTERNAL ldap_int_sasl_bind: EXTERNAL ldap_int_sasl_open: host=server.dummydomain.test SASL/EXTERNAL authentication started ldap_sasl_bind ldap_send_initial_request ldap_send_server_request ber_scanf fmt ({it) ber: ber_scanf fmt ({i) ber: ber_flush2: 26 bytes to sd 3 ldap_msgfree ldap_result ld 0x559c800da3c0 msgid 2 wait4msg ld 0x559c800da3c0 msgid 2 (infinite timeout) wait4msg continue ld 0x559c800da3c0 msgid 2 all 1 ** ld 0x559c800da3c0 Connections: * host: server.dummydomain.test port: 389 (default) refcnt: 2 status: Connected last used: Tue Sep 13 11:15:52 2022 ** ld 0x559c800da3c0 Outstanding Requests: * msgid 2, origid 2, status InProgress outstanding referrals 0, parent count 0 ld 0x559c800da3c0 request count 1 (abandoned 0) ** ld 0x559c800da3c0 Response Queue: Empty ld 0x559c800da3c0 response count 0 ldap_chkResponseList ld 0x559c800da3c0 msgid 2 all 1 ldap_chkResponseList returns ld 0x559c800da3c0 NULL ldap_int_select read1msg: ld 0x559c800da3c0 msgid 2 all 1 ber_get_next ber_get_next: tag 0x30 len 16 contents: read1msg: ld 0x559c800da3c0 msgid 2 message type bind ber_scanf fmt ({eAA) ber: read1msg: ld 0x559c800da3c0 0 new referrals read1msg: mark request completed, ld 0x559c800da3c0 msgid 2 request done: ld 0x559c800da3c0 msgid 2 res_errno: 0, res_error: <>, res_matched: <> ldap_free_request (origid 2, msgid 2) ldap_int_sasl_bind: EXTERNAL ldap_parse_sasl_bind_result ber_scanf fmt ({eAA) ber: ldap_parse_result ber_scanf fmt ({iAA) ber: ber_scanf fmt (}) ber: SASL username: cn=testuser,cn=Users,dc=pluto,dc=dummydomain,dc=test SASL SSF: 0 ldap_msgfree ldap_extended_operation ldap_send_initial_request ldap_send_server_request ber_scanf fmt ({it) ber: ber_scanf fmt ({) ber: ber_flush2: 32 bytes to sd 3 ldap_result ld 0x559c800da3c0 msgid -1 wait4msg ld 0x559c800da3c0 msgid -1 (timeout 100000 usec) wait4msg continue ld 0x559c800da3c0 msgid -1 all 1 ** ld 0x559c800da3c0 Connections: * host: server.dummydomain.test port: 389 (default) refcnt: 2 status: Connected last used: Tue Sep 13 11:15:52 2022 ** ld 0x559c800da3c0 Outstanding Requests: * msgid 3, origid 3, status InProgress outstanding referrals 0, parent count 0 ld 0x559c800da3c0 request count 1 (abandoned 0) ** ld 0x559c800da3c0 Response Queue: Empty ld 0x559c800da3c0 response count 0 ldap_chkResponseList ld 0x559c800da3c0 msgid -1 all 1 ldap_chkResponseList returns ld 0x559c800da3c0 NULL ldap_int_select read1msg: ld 0x559c800da3c0 msgid -1 all 1 ber_get_next ber_get_next: tag 0x30 len 64 contents: read1msg: ld 0x559c800da3c0 msgid 3 message type extended-result ber_scanf fmt ({eAA) ber: read1msg: ld 0x559c800da3c0 0 new referrals read1msg: mark request completed, ld 0x559c800da3c0 msgid 3 request done: ld 0x559c800da3c0 msgid 3 res_errno: 0, res_error: <>, res_matched: <> ldap_free_request (origid 3, msgid 3) ldap_parse_result ber_scanf fmt ({iAA) ber: ber_scanf fmt (x) ber: ber_scanf fmt (x) ber: ber_scanf fmt (}) ber: ldap_parse_extended_result ber_scanf fmt ({eAA) ber: ber_scanf fmt (a) ber: ber_scanf fmt (O) ber: u:PLUTO\Administrator ldap_msgfree ldap_free_connection 1 1 ldap_send_unbind ber_flush2: 7 bytes to sd 3 TLS trace: SSL3 alert write:warning:close notify ldap_free_connection: actually freed