From ea3997978e424818767fe2e90322f7d2552a01bc Mon Sep 17 00:00:00 2001
From: Jack Heysel <jack_heysel@rapid7.com>
Date: Fri, 7 Nov 2025 15:25:59 -0500
Subject: [PATCH 1/3] Remove ldap_esc_vulnerable_cert_finder acceptance test

---
 spec/acceptance/ldap_spec.rb | 18 ------------------
 1 file changed, 18 deletions(-)

diff --git a/spec/acceptance/ldap_spec.rb b/spec/acceptance/ldap_spec.rb
index 1c7f15d01054e..1da7cc0fcf945 100644
--- a/spec/acceptance/ldap_spec.rb
+++ b/spec/acceptance/ldap_spec.rb
@@ -89,24 +89,6 @@
             }
           }
         },
-        {
-          name: 'auxiliary/gather/ldap_esc_vulnerable_cert_finder',
-          platforms: %i[linux osx windows],
-          targets: [:session, :rhost],
-          skipped: false,
-          lines: {
-            all: {
-              required: [
-                /Successfully queried/
-              ]
-            },
-            linux: {
-              known_failures: [
-                /Auxiliary aborted due to failure: not-found/
-              ]
-            }
-          }
-        },
         {
           name: 'auxiliary/admin/ldap/rbcd',
           platforms: %i[linux osx windows],

From 99e35cb591f205dfb03b21774fe5c3e4e890a575 Mon Sep 17 00:00:00 2001
From: Jack Heysel <jack_heysel@rapid7.com>
Date: Mon, 10 Nov 2025 11:12:23 -0500
Subject: [PATCH 2/3] Keep test, add failure to known failures

---
 spec/acceptance/ldap_spec.rb | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/spec/acceptance/ldap_spec.rb b/spec/acceptance/ldap_spec.rb
index 1da7cc0fcf945..8ac3d6483991a 100644
--- a/spec/acceptance/ldap_spec.rb
+++ b/spec/acceptance/ldap_spec.rb
@@ -89,6 +89,25 @@
             }
           }
         },
+        {
+          name: 'auxiliary/gather/ldap_esc_vulnerable_cert_finder',
+          platforms: %i[linux osx windows],
+          targets: [:session, :rhost],
+          skipped: false,
+          lines: {
+            all: {
+              required: [
+                /Successfully queried/
+              ]
+            },
+            linux: {
+              known_failures: [
+                /Auxiliary aborted due to failure: not-found/,
+                /Auxiliary aborted due to failure: unknown: Net::LDAP::Error: 127.0.0.1:389 LDAP Error: Extended Operation\(1.3.6.1.4.1.4203.1.11.3\) not supported/
+              ]
+            }
+          }
+        },
         {
           name: 'auxiliary/admin/ldap/rbcd',
           platforms: %i[linux osx windows],

From 5fc6af500f12eaa030d2796b8a593827b38764e0 Mon Sep 17 00:00:00 2001
From: Jack Heysel <jack_heysel@rapid7.com>
Date: Mon, 10 Nov 2025 12:46:55 -0500
Subject: [PATCH 3/3] Use one regex to match both failures

---
 spec/acceptance/ldap_spec.rb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/spec/acceptance/ldap_spec.rb b/spec/acceptance/ldap_spec.rb
index 8ac3d6483991a..dd168cee771da 100644
--- a/spec/acceptance/ldap_spec.rb
+++ b/spec/acceptance/ldap_spec.rb
@@ -102,8 +102,7 @@
             },
             linux: {
               known_failures: [
-                /Auxiliary aborted due to failure: not-found/,
-                /Auxiliary aborted due to failure: unknown: Net::LDAP::Error: 127.0.0.1:389 LDAP Error: Extended Operation\(1.3.6.1.4.1.4203.1.11.3\) not supported/
+                /Auxiliary aborted due to failure: (not-found|unknown: Net::LDAP::Error: 127.0.0.1:389 LDAP Error: Extended Operation\(1.3.6.1.4.1.4203.1.11.3\) not supported)/,
               ]
             }
           }