Do to a self-signed (required to keep) certificate in the LDAPS cert chain I get the following error message:
gitlab-rake gitlab:ldap:check
Checking LDAP …
LDAP: … Server: ldapmain
Exception: SSL_connect returned=1 errno=0 state=error: certificate verify failed (self signed certificate in certificate chain)
Checking LDAP … Finished
This is expected, and I have tried the various ca_file and trsuted_cert_dir options that can be set in the gitlab.rb, none of which has worked. I can set the “verify_certificates: false” in the actually gitlab.yml and things will work. But as I can not set it in the gitlab.rb LDAPS will start failing after rerun of gitlabctl reconfigure. Is there away still to set it and keep across gitlabctl reconfigure