These are the current links to the upstream commits that fix the assertion error (one in bindWithDN, reported in this bug, and the other inside compareDN):
https://github.com/threerings/openvpn-auth-ldap/commit/ 5e14aedbdba3e08986fc9244d4cd6ea4d877b5c4 https://github.com/threerings/openvpn-auth-ldap/commit/ 2d1568c384eee51e907d93eec7f4dc263de602d2 But even after those fixes are applied, if you do not set a timeout in the ldap plugin configurationm the authentication will just not work: Apr 24 17:06:04 slapd slapd[1468]: conn=1001 fd=12 ACCEPT from IP= 10.0.100.106:52880 (IP=0.0.0.0:389) Apr 24 17:06:04 slapd slapd[1468]: connection_input: conn=1001 deferring operation: binding Apr 24 17:06:04 slapd slapd[1468]: conn=1001 op=0 BIND dn="uid=john,ou=People,dc=lxd" method=128 Apr 24 17:06:04 slapd slapd[1468]: conn=1001 op=0 BIND dn="uid=john,ou=People,dc=lxd" mech=SIMPLE ssf=0 Apr 24 17:06:04 slapd slapd[1468]: conn=1001 op=2 UNBIND Apr 24 17:06:04 slapd slapd[1468]: conn=1001 fd=12 closed The reporter is correct that these fixes are necessary, but more is needed.
