Bug #19896
Updated by Peter Amstutz over 2 years ago
User is unable to log in on their cluster, getting this error: > LDAP Result Code 200 "Network Error": TLS handshake failed (tls: server selected unsupported protocol version 301) They have reported that the server only supports TLS 1.1 and that the IT department intends to upgrade but has not done so yet. What It seems likely what happened between Arvados 2.4 and 2.5 is that the LDAP client (or Go TLS client client) got more strict by default -- documented here https://go.dev/doc/go1.18#tls10 default. We should need to provide an option (off by default) to relax the TLS version check.