On Tue, Oct 21, 2003 at 09:35:36AM -0700, Dylan Martin wrote: > Maybe your SSL is working and it's something bind related that's causing > trouble. Can you try simplifying the bind process to take it out of the > equation? Set up for and try an anonymous bind, for example? Can you > connect the regular ldap port and turn on TLS? I tried an anonymous bind and, as before, it failed from the remote host using LDAPS with "Can't contact LDAP server". However, when I tried to turn on TLS on an existing connection (with "ldapsearch -H ldap://halcyon.ox.icnet.uk/ -x -Z", I got a meaningful error message - "ldapsearch: not compiled with TLS support". Stupidly, I'd forgotten that the LDAP utilities in Debian/stable are not TLS-enabled by default, since I'm using the unstable branch on the machine that's running the server... So the problem is with my stupidity, although I'd point out that the error message is less than helpful. I'd normally not even admit to this, but I'd like it to go into the archives in case somebody makes the same mistake as me ;) Alex -- Mail: Alex Page <alex.page@cancer.org.uk> Real: Systems/Network Assistant, Epidemiology Unit, Oxford Tel: 01865 302 223 (external) / 223 (internal) PGP: 8868 21D7 3D35 DD77 9D06 BF0A 0746 2DE6 55EA 367E
Attachment:
signature.asc
Description: Digital signature