[Date Prev][Date Next] [Chronological] [Thread] [Top]

How to I verify SSL is working correctly

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: How to I verify SSL is working correctly
From: Rob Tanner <rtanner@linfield.edu>
Date: Fri, 4 Feb 2011 19:21:16 +0000
Accept-language: en-US
Content-language: en-US
Thread-index: AcvEoLDJS4fLU0fnvUaf5F7C7SBdHg==
Thread-topic: How to I verify SSL is working correctly
User-agent: Microsoft-Entourage/13.8.0.101117

Title: How to I verify SSL is working correctly

Hi,

I’m adding SSL to an existing openLDAP server. My certificate is a 2048 bit from Comodo and I need to install both the certificate and and the intermediate chain, 5 certificates altogether. I bundled the chain into a single file in the order Comodo lists and in slapd.conf I added:

TLSCACertificateFile /path/to/providerBundle.crt
TLSCertificateFile /path/to/mycert.pem
TLSCertificateKeyFile /path/to/mykey.pem

Then I restarted openLDAP. I have several different browsers to test the SSL connection, and mostly they all worked just fine. However, lbe, a java based browser that I think was originally from Novel, asks me if I want to trust the CA root certificate, which is the first cert in the CA bundle.

So, needless to say, I’m confused. Can anyone help unconfuse me?

Thanks.

Rob Tanner
UNIX Services Manager
Linfield College, McMinnville Oregon

Follow-Ups:
- Re: How to I verify SSL is working correctly
  - From: Dan Pritts <danno@internet2.edu>

Prev by Date: Re: Search with filter doesn't return any results?
Next by Date: slapd.d syntax help for ldap proxy server
Index(es):
- Chronological
- Thread