[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: OpenLDAP with SSL
- To: Chamith Kumarage <gnu.chami@gmx.net>
- Subject: Re: OpenLDAP with SSL
- From: Jarbas Peixoto Júnior <jarbas.junior@gmail.com>
- Date: Fri, 4 Dec 2009 10:10:14 -0300
- Cc: openldap-technical@openldap.org
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type; bh=Zgkv81zdquz/OhbJkl3wJjeYVtJL9lMebP92WiaYh8s=; b=xJX+UffI/HlHl+/VRme/qzAPtkGmFp7chPPRVGJtQ7SV7UvWAp8kMcw591Y1c9ownd rqG9U7q9yDZL8W2Tg+faz9rjG/4lTaWr6DsSharHjfunB0VFPADsMsMHMF5WeClgqCVC ovcLOVj0sYUfzG71DluVBPORiGUkDhLYuSH2I=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=brnzljUO27LAjB/63t76jKBHr4x2NLy/O2jmsXXEgxHs0Paq8XJOlOAjJUs9PcrI3/ AbaKwIWlGk4x+Bhn2wHL3LpH5Nki2UDLvNyLBoz8uaz5nl1uX1j4kxC/ihJMvVeVUhYw OOwexvSvxauAoKb0yLjCuuMOJVDAWfSIxT/SI=
- In-reply-to: <1259921770.7904.50.camel@chamith-laptop>
- References: <1259921770.7904.50.camel@chamith-laptop>
2009/12/4 Chamith Kumarage <gnu.chami@gmx.net>:
> Hi Folks,
>
> I have setup openldap with SSL and i'm using self signed certs. I have
> included the following in my slapd.conf.
>
> TLSCipherSuite HIGH:MEDIUM:-SSLv2
If you are using Debian see this - http://wiki.debian.org/LDAP/OpenLDAPSetup
> TLSCACertificateFile /etc/ldap/ssl/server.pem
> TLSCertificateFile /etc/ldap/ssl/server.pem
> TLSCertificateKeyFile /etc/ldap/ssl/server.pem
> TLSVerifyClient demand
>
> and in my ldap.conf I have;
>
> HOST <my_ip>
> PORT 636
> TLS_REQCERT /etc/ldap/ssl/server.pem
>
>
> When I start the service, I see port 636 is up and I can even telnet to
> it. But I cannot perform any ldap operations there.
>
> Any help would be appreciated!
>
> Thanks,
> ~Chamith
>
>