[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: TLS_CACERTDIR not working?

To: <gmatt@nerc.ac.uk>, "openldap" <openldap-software@OpenLDAP.org>
Subject: RE: TLS_CACERTDIR not working?
From: "Tay, Gary" <Gary_Tay@platts.com>
Date: Fri, 22 Oct 2004 09:27:02 +0800
Content-class: urn:content-classes:message
Thread-index: AcS3jI/uhB67HiVdTJSbzzKulF4plgASQetw
Thread-topic: TLS_CACERTDIR not working?

I had the same experience with 2.2.13/RedHat EL3 and Solaris9, I was
using pem format also, that was why I had worked around it by using
TLS_CACERT and putting all CA certs in one file.

I could be missing something if this is not a bug.

I am now using 2.2.17 but did not try to use TLS_CACERTDIR again.

Gary

-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org] On Behalf Of Greg Matthews
Sent: Friday, October 22, 2004 12:29 AM
To: openldap
Subject: TLS_CACERTDIR


Does anyone use TLS_CACERTDIR in their .ldaprc file?

I can't get this to work with ldapsearch. If I use TLS_CACERT and put
all the CA certificates in one file then it will work. If I use both
options su(1) segfaults!

using 2.2.17 ldapsearch and various versions of slapd. It seems to be on
the client side tho as it doesnt recognise the CA, so I surmise it is
not parsing the files in TLS_CACERTDIR correctly. Should these be
something other than pem format?

I can live with it but its still a bug no?

GREG
-- 
Greg Matthews
iTSS Wallingford	01491 692445

Prev by Date: replog not created anymore ...
Next by Date: openldap proxy server configuration.
Index(es):
- Chronological
- Thread