[Date Prev][Date Next] [Chronological] [Thread] [Top]

tls




Hi Explain me what I do not so.

Install OpenSSl
Install BerkeleyDB

Install OpenLdap with this options:
export CPPFLAGS="-I/usr/local/BerkeleyDB.4.1/include \
-I/usr/local/ssl/include"
export LDFLAGS="-L/usr/local/BerkeleyDB.4.1/lib \
-R/usr/local/BerkeleyDB.4.1/lib \
-L/usr/local/ssl/lib \
-R/usr/local/ssl/lib"
./configure --with-tls


in slapd.conf piece:
TLSCipherSuite  HIGH:MEDIUM:+SSLv3
TLSCACertificateFile    /usr/local/ssl/misc/demoCA/cacert.pem
TLSCertificateFile      /usr/local/ssl/misc/demoCA/certs/wolfcert.pem
TLSCertificateKeyFile   /usr/local/ssl/misc/demoCA/private/wolfkey.pem
TLSVerifyClient demand

start slpad server on -h ldap:///

Server starting and I can connecting to him through 389 port.
Why I can connect to this server? My client on other host does not know  about tls.