[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
[SOLVED] Re: Slapd, GNUTLS on Debian/Squeeze
Le sam. mai 21 2011 ï 12:55:03 -0300, Reinaldo de Carvalho dit :
> On Sat, May 21, 2011 at 12:04 PM, David Dumortier <d.dumortier@free.fr> wrote:
> >> >>
> >> >> I suspect you are running ldap:// on port 636.
> >> >
> >> > ldapsearch -W -H ldap://myip:636/
> >> > ldap_result: Can't contact LDAP server (-1)
> >> >
> >>
> >> No, -H ldaps://myip:636/ (to SSL/ldaps).
> >
> > Tried it with same result :-(
> >
>
> You're really using a Certificate file (and not a CSR)?
>
> Ldap client will validade the server certificate, you should especify
> TLS_CACERT /to/file or TLS_REQCERT never on /etc/ldap/ldap.conf
You are right, I modified TLS_REQCERT in slapd conf but not on
/etc/ldap/ldap.conf.
It works. Thank you everybody.
I don't understand everything, especially the fact that gnutls-cli work so I'll
try to reinstall all, and see if I'll find the same error.
>
> --
> Reinaldo de Carvalho
> http://korreio.sf.net
> http://python-cyrus.sf.net
>
> "While not fully understand a software, don't try to adapt this
> software to the way you work, but rather yourself to the way the
> software works" (myself)
>
--
David Dumortier