[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap 2.1.30 + gentoo +ssl [self signed problem again]

To: "Tay, Gary" <Gary_Tay@platts.com>
Subject: Re: openldap 2.1.30 + gentoo +ssl [self signed problem again]
From: Florin Angelescu <fangelescu@caami-hziv.fgov.be>
Date: Thu, 25 Nov 2004 14:42:11 +0000
Cc: OpenLDAP-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <A04B6AE6ED3BD742B64D5B17093F64E2913025@IMSSGPX01.ims.mhm.mhc>
Organization: CAAMI
References: <A04B6AE6ED3BD742B64D5B17093F64E2913025@IMSSGPX01.ims.mhm.mhc>
User-agent: KMail/1.7.1

On Thursday 25 November 2004 12:50, you wrote:
> 1) Could you add Fully Qualified Domain Name and IP address of LDAP server
> into /etc/hosts of LDAP client, in case your DNS could not resolve properly
> the FQDN on which CA Cert and OpenSSL is depending, and make sure you have
> "hosts: files dns" in /etc/nsswitch.conf.
already did

> 2) I don't understand this line:
> security simple_bind=64
> If you don't need it and remove it, after restarting LDAP server, will it
> help?
>but your "ldapsearch -Z" is using the default SASL bind?
indeed

Follow-Ups:
- Re: openldap 2.1.30 + gentoo +ssl [self signed problem again]
  - From: Jose Gonzalez Gomez <jgonzalez@opentechnet.com>

Prev by Date: RE: Is the Redhat's openldap distribution broken?
Next by Date: Openldap Aci Problem
Index(es):
- Chronological
- Thread