[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Reg OpenLdap on Ubuntu



Hi Dieter,

I already have the certificates and here is my ldap.conf :

TLS_REQCERT demand
TLS_CACERT /etc/ssl/certs/ca-cert.pem

With these settings, it's working fine. As I already mentioned, ldapsearch command runs fine with "ldaps" url and also with "ldap" url WITH "-ZZ" option.

I think that indicates that TLS is enabled on the server.

Is there any difference in behavior when slapd used libgnutls and when it uses libssl ? Or they both serve the same purpose (this was my idea till now)?

Does apache expect slapd to use libssl and not libgnutls ?

Regards
Asimananda

On Thu, Sep 17, 2009 at 4:53 PM, Dieter Kluenter <dieter@dkluenter.de> wrote:
Asimananda Mohanty <asimananda.mohanty@gmail.com> writes:

> Hi Dieter,
>
> Does that mean that my openLDAP has been configured correctly so as to be used with the
> required applications as I described in my previous mails today? Or do I need to do
> something else for the same?

You have to create certificates of course and configure slapd to read
this certificates and listen on a secure port.
http://www.openldap.org/doc/admin24/tls.html

-Dieter
--
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:8EF7B6C6
53°37'09,95"N
10°08'02,42"E