[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Client App and STARTLS auth

To: Massimiliano Pala <pala@isis.poly.edu>
Subject: Re: Client App and STARTLS auth
From: Howard Chu <hyc@symas.com>
Date: Fri, 10 Jun 2011 13:48:44 -0700
Cc: openldap-technical@openldap.org
In-reply-to: <4DF27A59.90401@isis.poly.edu>
References: <4DF260A9.9020401@isis.poly.edu> <4DF26AE9.1050407@gmail.com> <4DF27A59.90401@isis.poly.edu>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:2.0b13pre) Gecko/20110322 Firefox/4.0b13pre SeaMonkey/2.1b2pre

Massimiliano Pala wrote:

Hi Rich,

that's not really what I wanted.. I am developing my own ldap client
and I wanted to know what is the code path to set the option.

I tried to use the following:

ldap_set_option(ld, LDAP_OPT_X_TLS_REQUIRE_CERT, "never")

but it always fails ( != 0).

Of course. For ldap_set_option you must use the proper value, e.g.LDAP_OPT_X_TLS_NEVER.

Also, I would like to know if there's a possibility to set a callback
for the verify of the certificates.

Cheers,
Max


On 06/10/2011 03:05 PM, Rich Megginson wrote:
[...]

TLS_REQCERT<level>
never, allow, try


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- Client App and STARTLS auth
  - From: Massimiliano Pala <pala@isis.poly.edu>
- Re: Client App and STARTLS auth
  - From: Rich Megginson <rich.megginson@gmail.com>
- Re: Client App and STARTLS auth
  - From: Massimiliano Pala <pala@isis.poly.edu>

Prev by Date: Re: Client App and STARTLS auth
Next by Date: Re: Client App and STARTLS auth
Index(es):
- Chronological
- Thread