[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldapsearch ignoring ldap.conf (ITS#2697)

To: openldap-its@OpenLDAP.org
Subject: ldapsearch ignoring ldap.conf (ITS#2697)
From: rodrigo.lists@fabricadeideias.com
Date: Tue, 2 Sep 2003 12:42:11 GMT

Full_Name: Rodrigo Severo
Version: 2.1.22
OS: Conectiva Linux 9
URL: 
Submission from: (NULL) (200.140.13.55)


ldapsearch is ignoring entries in ldap.conf.

I use the following entries in ldap.conf:

TLS_CACERT      /etc/ssl/certs/cr_aa.pem
TLS_CERT        /etc/ssl/certs/fellini.cert
TLS_KEY /etc/ssl/private/fellini.key

and I can't connect to a SSL only OpenLDAP server which give me the following
error:

TLS trace: SSL3 alert write:fatal:handshake failure
TLS trace: SSL_accept:error in SSLv3 read client certificate B
TLS: can't accept.
TLS: error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return
a certificate s3_srvr.c:1977

If I create a .ldaprc file with exactly the same entries, ldapsearch does
connect nicefully to the same OpenLDAP server.

I straced ldapsearch and saw that it is reading my ldap.conf file but it nevers
tries to read my cert files when I don't have a .ldaprc file.

Prev by Date: Tiny bugfix patch for ldappasswd (ITS#2696)
Next by Date: 2.1 admin guide typo about kerberos principals (ITS#2695)
Index(es):
- Chronological
- Thread