[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS/SSL problems

To: Craig <craig5@pobox.com>, openldap-software@openldap.org
Subject: Re: TLS/SSL problems
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Tue, 22 May 2007 19:25:53 -0700
Content-disposition: inline
In-reply-to: <46539AB5.3010602@pobox.com>
References: <46539AB5.3010602@pobox.com>

--On Tuesday, May 22, 2007 6:36 PM -0700 Craig <craig5@pobox.com> wrote:

I am running openldap 2.2.13. I am having a problem getting TLS to work.
I have done numerous searches, but most web pages seem to deal with
LDAP/kerberos issues. We do not run kerberos. I am only trying to prevent
passwords from being sent in the clear.

I have followed the instructions on this page:

http://www.ibm.com/developerworks/linux/library/l-openldap/


I am able to run ldapsearch with simple auth:
 > ldapsearch -x

but, am not able to do any of the following:
 > ldapsearch
 > ldapsearch -X u:myuid
 > ldapsearch -X dn:uid=myuid,ou=People,dc=example,dc=com

The error is (with "-d 255"):
...
SASL/GSSAPI authentication started


You need to use a lower case x to disable GSSAPI.  i.e.,

ldapsearch -x <whatever>

--Quanah

--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration

Follow-Ups:
- Re: TLS/SSL problems
  - From: Craig <craig5@pobox.com>

References:
- TLS/SSL problems
  - From: Craig <craig5@pobox.com>

Prev by Date: TLS/SSL problems
Next by Date: Re: TLS/SSL problems
Index(es):
- Chronological
- Thread