Issues Establishing Communication Between Linux-Based LDAPS Server and PLC PPC80

c531152 · October 1, 2024, 8:47am

Hi everyone,

We have successfully configured LDAPS communication when using a Windows server as the LDAP server. However, we are struggling to establish communication between a Linux-based LDAPS server and our PLC PPC80.

Setup:

Linux Server: Ubuntu 24.04 running a 389 LDAPS server
The server seems to function properly , as we can authenticate against it using other applications with the same base64 encoded certificates .
The User Location DN is correctly set up.

What we’ve tested:

On the PLC PPC80 side, we verified connectivity using the IcmpPing() function, confirming the server is reachable by both IP address and DN .
This suggests that the HOST configuration on the PLC side is correct.

Problem:

Despite confirming connectivity, communication between the PLC PPC80 and the Linux-based LDAPS server still fails. We haven’t been able to identify the root cause.
Question:

Are there any proven procedures, projects, or configurations that we can follow to resolve this issue?

Any advice or troubleshooting steps would be greatly appreciated!

Thanks in advance for your help!

alexander.hefner · October 1, 2024, 2:30pm

Hi,

first I have to say, that I haven’t any practical experience with LDAPS (not Linux nor Windows).

Nevertheless I’ve some questions:
as I understood you’re using the 389 Directory Server.
I’ve seen in the help, that the root certificate authority certificate of the server must be used, and if using 389 Directory Server, the certificate has to be in “.pem” format (not “.cer” or “.crt”). Additionally, a plugin called “MemberOfPlugin” has to be enabled inside the 389 Directory Server (see here at the bottom of the page under 389 directory server). Also, the server has to support TLS1.2 or above.
Does that match to your setup?
Are there any entries in the PLC logger facing into direction of the user management (I think they would in the “Services” logger as they are generated by mpUserX)?

Best regards!

kovarj · November 21, 2024, 7:00am

Hi Elmajid, what is the status of your topic? have you solved it?

Topic		Replies	Views
Mapp Services - LDAP and certificate management Share Info & Ideas mapp-services , mapp-userx	4	399	November 27, 2024
Can't connect to X20CP3584 Ask Questions automation-runtime	11	801	April 8, 2024
CPU properties - Time synchronization (NTP)- not working Ask Questions x20 , automation-studio	7	841	March 21, 2024
AsOpcUac::UA_WriteList.NodeErrorIDs = 0x801F0000 (Bad_UserAccessDenied) Ask Questions opc-ua	9	123	August 13, 2024
LLDP support on X20 CPU Ask Questions x20	3	84	August 14, 2024

Issues Establishing Communication Between Linux-Based LDAPS Server and PLC PPC80

Related topics