[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: TLS question
* Branko F. Gračnar <bfg@noviforum.si> [24-02-03 20:45]:
> Hi.
>
> I have trouble using LDAP with TLS and SSL.
>
> I if issue the following command:
>
> ldapsearch -ZZ -h myldap '(filter)'
>
> then ldapsearch program successfully connects to LDAP server and performs
> the search. This works okay, if i have "TLS never" option in my ldap.conf
> file.
>
> If i set TLS to "hard", then ldapsearch command dies with error 81 (can't
> contact ldap server).
>
> My ldap server is runing on ldap and ldaps ports, and i can successfully
> connect to it from Java LDAP browser using SSL. I Cannot connect using SSL
> from Microsoft Windows Adressbook clients... This is weird.
>
I think that the option "TLS hard" means you have to use a client side
certificate. What version of OpenLDAP are you using ?
Use ldapsearch -d -1 to see the explicit error (hopefully) and see if
you can work this thing out.
hth,
mitu