[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS question

To: openldap-software@OpenLDAP.org
Subject: Re: TLS question
From: Mitrana Cristian <cmitrana@xnet.ro>
Date: Tue, 25 Feb 2003 09:15:24 -0200
Content-disposition: inline
In-reply-to: <008d01c2dc56$806c6200$fac8a8c0@mordor>
References: <008d01c2dc56$806c6200$fac8a8c0@mordor>
User-agent: Mutt/1.5.3i

* Branko F. Gračnar <bfg@noviforum.si> [24-02-03 20:45]:
 
> Hi.
> 
> I have trouble using LDAP with TLS and SSL.
> 
> I if issue the following command:
> 
> ldapsearch -ZZ -h myldap '(filter)'
> 
> then ldapsearch program successfully connects to LDAP server and performs
> the search. This works okay, if i have "TLS never" option in my ldap.conf
> file.
> 
> If i set TLS to "hard", then ldapsearch command dies with error 81 (can't
> contact ldap server).
> 
> My ldap server is runing on ldap and ldaps ports, and i can successfully
> connect to it from Java LDAP browser using SSL. I Cannot connect using SSL
> from Microsoft Windows Adressbook clients... This is weird.
> 

 I think that the option "TLS hard" means you have to use a client side
certificate. What version of OpenLDAP are you using ?
 Use ldapsearch -d -1 to see the explicit error (hopefully) and see if
you can work this thing out.

hth,
mitu

References:
- TLS question
  - From: "Branko F. Gračnar" <bfg@noviforum.si>

Prev by Date: Re: [LDAP-SOFTWARE] ACLand regex (matching self)
Next by Date: starting from scratch
Index(es):
- Chronological
- Thread