[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Mirrormode and cn=config

To: Peter Mogensen <apm@mutex.dk>
Subject: Re: Mirrormode and cn=config
From: Mathieu MILLET <ldap@htam.net>
Date: Wed, 25 Mar 2009 17:07:29 +0100
Cc: openldap-software@openldap.org
User-agent: RoundCube Webmail/0.2.1

On Wed, 25 Mar 2009 15:09:09 +0100, Peter Mogensen <apm@mutex.dk> wrote:
> Hi,
> 
[snip]
> 
> Second:
> I have problem with SASL/EXTERNAL and TLS. The server can't seem to find 
> the client certificate. I'm using slapd from Debian Lenny and Ubuntu 
> Hardy, and it's probably due to GnuTLS problems.
> I get error from slapd like:
> "TLS: can't accept: A TLS packet with unexpected length was received.."
> "unable to get TLS client DN, error=-4 id=0"
> 
> Are GnuTLS just completely broken on Debian Lenny or can this be made to 
> work?

Which version of OpenLDAP are you using ?
If using 2.4.15, the ldap "client" libs have broken SASL/EXTERNAL
implementation. These libs are also used for consumer to connect to
provider.

Patch already submitted and to be available with 2.4.16.

> /Peter

Hope it can help,
Sincerely yours, Mathieu.

Follow-Ups:
- Re: Mirrormode and cn=config
  - From: Peter Mogensen <apm@mutex.dk>

Prev by Date: Mirrormode and cn=config
Next by Date: Re: Mirrormode and cn=config
Index(es):
- Chronological
- Thread