Closed Bug 430422 Opened 17 years ago Closed 17 years ago

LDAP Search for Certificates only works if enabled globally

Categories

(Thunderbird :: Address Book, defect)

Product:
Thunderbird
Component:
Address Book
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 392016

People

(Reporter: info, Unassigned)

Details

User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.8.1.13) Gecko/20080316 SUSE/2.0.0.13-0.1 Firefox/2.0.0.13 Build Identifier: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.8.1.13) Gecko/20080316 SUSE/2.0.0.13-0.1 Firefox/2.0.0.13 When I configure an LDAP server (which works perfectly), I can choose to use LDAP search for each of my mail accounts (in account settings -> composition & addressing) or I can choose to configure it globally for all accounts (in the preferences -> composition -> addressing dialog). If I do not configure the LDAP server globally, search for recipient addresses works, but fetching the recipients certificate for encryption does not work. If I configure the LDAP server globally, everything works fine. Reproducible: Always Steps to Reproduce: 1. Configure an LDAP server: Address Book -> File -> New -> LDAP Directory. For example enter: Name=DFN-PKI Hostname=ldap.pca.dfn.de BaseDN: o=DFN-Verein,c=DE PortNumber: 389 BindDN: <empty> 2. Import the root certificate of the underlying PKI, in this case from the German Telekom Root CA and the intermediate CA certificates: https://signet.telesec.de/cgi-bin/caservice/Common/InstallRoot/DT-Root-CA-2.der http://cdp.pca.dfn.de/global-root-ca/pub/cacert/cacert.der http://cdp.pca.dfn.de/uni-hamburg-ca/pub/cacert/g_cacert.der 3. For your mail account, configure to use ldap server "DFN-PKI" in "Edit -> Account Settings -> Composition & Addressing" 4. Try to write a new email to "olaf.gellert@rrz.uni-hamburg.de". Notice that recipient address substitution works fine. Choose "S/MIME -> Encrypt this message" and see "S/MIME -> Security Info". The certificate is "Not found". 5. Configure to use LDAP server "DFN-PKI" globally ("Edit -> Preferences -> Composition -> Addressing". Repeat writing a new message as in step 4. The certificate is fetched from the server, Security Info says "valid". Actual Results: The certificate of the recipient is not fetched when the LDAP server is configured only for the email account. It is fetched correctly when the LDAP server is configured in the global preferences.
Status: UNCONFIRMED → RESOLVED
Closed: 17 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.