[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS problem

To: Atom Powers <apowers@digipen.edu>
Subject: Re: TLS problem
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Mon, 25 Sep 2006 16:03:00 -0700
Cc: Dennis.Hoffman@seagate.com, openldap-software@OpenLDAP.org
In-reply-to: <451805D0.1020908@digipen.edu>
References: <OF49DA98E5.E9F4ABAB-ON872571F4.00559168-872571F4.00585F92@seagate.com> <451805D0.1020908@digipen.edu>

At 09:37 AM 9/25/2006, Atom Powers wrote:
>Try this:
>
>Dennis.Hoffman@seagate.com wrote:
>>
>> TLSCipherSuite                     HIGH:MEDIUM
>
>TLSCipherSuite                     HIGH:MEDIUM:+TLSv1:+SSLv3
>
>>
>> and the ldap.conf file has these settings:
>
>ssl start_tls
>tls_checkpeer no

Neither of these directives are recognized by OpenLDAP Software
and, hence, are ignored by it.


>> TLS_CACERT             /usr/local/etc/openldap/cacert/cacert.pem
>> TLS_REQCERT         never
>>
>> I am just doing a simple bind (no SASL).  I run the slapd with the -d 255
>> option, and this is what I see when I try an ldap search:
>
>Are you searching with "ldapsearch -ZZ ..." ?
>
>-- 
>Perfection is just a word I use occasionally with mustard.
>--Atom Powers--
>Systems Administrator
>DigiPen Institute of Technology
>(425) 895-4443

Follow-Ups:
- Re: TLS problem
  - From: Atom Powers <apowers@digipen.edu>

References:
- TLS problem
  - From: Dennis.Hoffman@seagate.com
- Re: TLS problem
  - From: Atom Powers <apowers@digipen.edu>

Prev by Date: Re: TLS problem
Next by Date: Re: Memory
Index(es):
- Chronological
- Thread