Hi there.
today for security reasons i had to put my hands into CMDBuild.
CMDBuild was set up to use LDAP through 389 and i would like to change it to port 636 for encryption.

i found this file /opt/cmdbuild_30/conf/cmdbuild/auth.conf which looks like this:

methods = LdapAuthenticator,DBAuthenticator
ldap.basedn = dc=xxxx,dc=xxxx,dc=xxxx
ldap.use.tls = true
ldap.bind.attribute = samAccountName
ldap.server.address = xxxx
ldap.search.auth.password = xxxx
ldap.search.auth.principal = CN=xxxx,OU=xxxx,OU=xxxxi,DC=xxxx,DC=xxxx,DC=xxxx

i think by default it uses the port 389, cause i’ve seen traffic with “tcpdump port 389”.

i tried to modify the file, but as soon as i rebooted i saw that it’s managed by the DB and so i found it back to the previous one.

next i tried to input this command:

./cmdbuild.sh restws setconfig auth.ldap.server.port 636

then i did a systemctl restart tomcat, nothing changed, always traffic through 389.

than i did the same command above and then this one:
./cmdbuild.sh restws reloadconfig

nothing changed.

i did check out the logs here /opt/cmdbuild_30/logs/cmdbuild/cmdbuild_sys.log and this is the output that concerned me:

              system is LOADING_CONFIG

2022-02-04T16:57:30.826+01:00 [sys:boot] INFO  o.c.config.service.ConfigServiceImpl - load config from db
2022-02-04T16:57:30.827+01:00 [sys:boot] WARN  o.c.c.s.FilesystemConfigRepositoryImpl - found unknown config key = org.cmdbuild.core.showInfoAndWarningMessages in file = /opt/cmdbuild_30/conf/cmdbuild/core.conf
2022-02-04T16:57:30.866+01:00 [sys:boot] WARN  o.c.c.s.DatabaseConfigRepositoryImpl - found unknown config key = auth.ldap.server.port from db
2022-02-04T16:57:30.867+01:00 [sys:boot] WARN  o.c.c.s.DatabaseConfigRepositoryImpl - found unknown config key = org.cmdbuild.core.showInfoAndWarningMessages from db
2022-02-04T16:57:30.883+01:00 [sys:boot] INFO  o.cmdbuild.minions.SystemServiceImpl -

can anyone tell me what to do next? i’m stuck.
thank you all.