[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP 2.1.x + NSS+SSL connecting to OpenLDAP 2.0.23 = broken?



* nate (ldap@aphroland.org) wrote:
> I am tryin to figure out if this is a bug or a feature.

Feature in this case, it would seem.

> the SuSE 8.1 system has these ldap packages installed:
> openldap2-client-2.1.4-70
> nss_ldap-199-31
> pam_ldap-150-57

Basically the problem here is real simple: OpenLDAP 2.1 actually checks
the certificate, which can't be self-signed, and 2.0 doesn't.  To build
proper certificates look at the OpenLDAP FAQ.

	Stephen

Attachment: pgpIYowxDelAy.pgp
Description: PGP signature