[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS fails

Subject: Re: TLS fails
From: Jon Roberts <jon@jonanddeb.net>
Date: Fri, 03 Feb 2006 12:01:01 -0700
Cc: Chip Burke <cburke@innova-partners.com>, OpenLDAP-software@OpenLDAP.org
In-reply-to: <Pine.SOL.4.58.0602031230530.956@toolbox.rutgers.edu>
References: <00c901c628e4$53fb7200$1f0fa8c0@innova.local> <Pine.SOL.4.58.0602031230530.956@toolbox.rutgers.edu>
User-agent: Mozilla Thunderbird 1.0.6-1.1.fc4 (X11/20050720)

Aaron Richton wrote:

Sounds like you're on the right track with the server. But I see no note
of using ldap.conf or .ldaprc to set TLS_CACERT directive for your client.
See ldap.conf(5).


For a local CA, you will also want the line:

TLSCACertificateFile /path/to/your/cacert.pem

in your slapd.conf file. The error message you are getting indicates that you are not finding the CA for verification.

Jon Roberts
www.mentata.com

Follow-Ups:
- RE: TLS fails
  - From: "Chip Burke" <cburke@innova-partners.com>

References:
- TLS fails
  - From: "Chip Burke" <cburke@innova-partners.com>
- Re: TLS fails
  - From: Aaron Richton <richton@nbcs.rutgers.edu>

Prev by Date: Re: TLS fails
Next by Date: RE: TLS fails
Index(es):
- Chronological
- Thread