[Date Prev][Date Next] [Chronological] [Thread] [Top]

searching on port 389 or 636

To: ldap-list <openldap-software@OpenLDAP.org>
Subject: searching on port 389 or 636
From: Tim Jordan <timothy_jordan@labor.state.ak.us>
Date: Fri, 02 Apr 2004 10:49:09 -0900
Organization: Dept. of Labor, Network Services

Is this the correct operation after configuring SSL/TLS?

I noticed that I can not do a search using port 389:

localhost:/etc/ldap/scripts# ldapsearch -x -h ldap://ldap2.smb-ldap.org -D "cn=Manager,dc=smb-ldap,dc=org" -s base -W
Enter LDAP Password:
ldap_bind: Can't contact LDAP server (81)

When I specify ldaps:// it works:

localhost:/etc/ldap/scripts# ldapsearch -x -H ldaps://ldap2.smb-ldap.org -D "cn=Manager,dc=smb-ldap,dc=org" -s base -W

I show ldap running on both ports:

localhost:/etc/ldap/scripts# nmap localhost

Starting nmap 3.50 ( http://www.insecure.org/nmap/ ) at 2004-04-02 10:45 AKST
Interesting ports on localhost (127.0.0.1):
(The 1644 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
389/tcp open ldap
636/tcp open ldapssl

I appreciate any insight,
Thanks,
TJ

PS: Perhaps this is because the slapd.conf and the ldap.conf both have TLS.... settings in them? Do I need to specify a parameter to allow both searches to suceed?

Follow-Ups:
- Re: searching on port 389 or 636
  - From: Thomas Gagné <tgagne@wideopenwest.com>
- Re: searching on port 389 or 636
  - From: Dieter Kluenter <dieter@dkluenter.de>

Prev by Date: Re: ACL to permit access to some attributes
Next by Date: Re: searching on port 389 or 636
Index(es):
- Chronological
- Thread