[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: searching on port 389 or 636



Hi,

Tim Jordan <timothy_jordan@labor.state.ak.us> writes:

> Is this the correct operation after configuring SSL/TLS?
> I noticed that I can not do a search using port 389:
> localhost:/etc/ldap/scripts# ldapsearch -x -h ldap://ldap2.smb-ldap.org -D
> "cn=Manager,dc=smb-ldap,dc=org" -s base -W
> Enter LDAP Password:
> ldap_bind: Can't contact LDAP server (81)
[...]
> PS: Perhaps this is because the slapd.conf and the ldap.conf both have
> TLS.... settings in them? Do I need to specify a parameter to allow both searches
> to suceed?

To envoke a TLS session, which is initiated by a client, you have to
set the flag -Z
that is
ldapsearch -H ldap://my.host -ZZ ...

-Dieter

-- 
Dieter Kluenter  | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter(at)dkluenter.de
http://www.avci.de