[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS problem



On Wednesday, 7 July 2010 21:27:52 Quanah Gibson-Mount wrote:
> --On Wednesday, July 07, 2010 10:08 PM +0200 Cédric Jeanneret
> 
> <cedric.jeanneret@camptocamp.com> wrote:
> > Hello,
> >
> > Hm, using debian etch 64b - maybe a 64b story ?

64bit works just fine (on other distros), so not a '64b story'.

> > For now, I just cannot
> > manage to make it work - errors have changed, but still no way to
> > connect to the server -.-.
> >
> > I'll post tomorrow the new config and its error messages.
> >
> > Thank you for those who tried to help me.
> 
> Debian uses GnuTLS instead of OpenSSL to build OpenLDAP.  GnuTLS has a
> number of interesting behaviors.  I advise building your own OpenLDAP with
> OpenSSL instead.

Before suggesting changing the software, maybe we should ensure the OP isn't 
trying to do START_TLS on the ldaps port?

> >> While starting slapd with:
> >> slapd -h 'ldaps:///' -g openldap -u openldap  -d 16383
> >>
> >> and trying to connect to it with:
> >> ldapsearch -Z -d 16383 -LLL -b cn=admin,dc=my,dc=server,dc=ltd -w
> >> "foo.bar" -S cn -h my.server.ltd -p 636 cn

Regards,
Buchan