RE: unrecognized configuration parameter "ldapbinddn" in file "/var/lib/pgsql/data/postgresql.conf"

Shouldn't the ldap string be in the pg_hba.conf file?

https://www.enterprisedb.com/postgres-tutorials/how-connect-postgres-ldap-starttls

Tony

-----Original Message-----
From: Bruce Momjian <bruce(at)momjian(dot)us>
Sent: Thursday, November 2, 2023 4:17 PM
To: Bernd Lentes <bernd(dot)lentes(at)helmholtz-muenchen(dot)de>
Cc: Pgsql-admin <pgsql-admin(at)lists(dot)postgresql(dot)org>
Subject: Re: unrecognized configuration parameter "ldapbinddn" in file "/var/lib/pgsql/data/postgresql.conf"

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.

On Thu, Nov 2, 2023 at 07:56:40PM +0000, Bernd Lentes wrote:
> Hi,
>
> i'm trying to use LDAP to authenticate Postgres against a Windows AD. On elder versions it succeeded.
> Now I'm running postgresql-15-150500.8.19.noarch on a SLES 15 SP5 system.
> I can't start the db server because it doesn't know the respective configuration parameters:
>
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldapbinddn" in file "/var/lib/pgsql/data/postgresql.conf" line 106
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldapserver" in file "/var/lib/pgsql/data/postgresql.conf" line 108
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldapport" in file "/var/lib/pgsql/data/postgresql.conf" line 110
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldaptls" in file "/var/lib/pgsql/data/postgresql.conf" line 112
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldapbasedn" in file "/var/lib/pgsql/data/postgresql.conf" line 114
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] LOG: unrecognized configuration parameter "ldapbindpasswd" in file "/var/lib/pgsql/data/postgresql.conf" line 116
> Nov 02 20:42:15 geneious postgresql-script[15577]: 2023-11-02 19:42:15.387 GMT [15577] FATAL: configuration file "/var/lib/pgsql/data/postgresql.conf" contains errors
> Nov 02 20:42:15 geneious postgresql-script[15575]: pg_ctl: could not start server
> Nov 02 20:42:15 geneious postgresql-script[15575]: Examine the log output.
> Nov 02 20:42:15 geneious systemd[1]: postgresql.service: Control process exited, code=exited, status=1/FAILURE
>
> Here is my setup from postgresql.conf:
>
> ldapbinddn = 'xxxxxxxxxxx'
> ldapserver = ldaps.scidom.de
> ldapport = 636
> ldaptls = 1
> ldapbasedn = 'xxxxxxxxx'
> ldapbindpasswd = 'xxxxxxxxxxxxxxxxx'
>
> I took the parameters from the doc from the official webpage.
> Do I need to switch on LDAP in a certain way ?

Okay, I am going to take a wild guess here, but the line numbers of the
errors skip by 2 (e.g., 106, 108), while the example you showed have
them in adjacent lines. Could there be invalid characters in the file
contents?

--
Bruce Momjian <bruce(at)momjian(dot)us> https://momjian.us/
EDB https://enterprisedb.com/

Only you can decide what is important to you.