[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap.conf search order problem

To: openldap-technical@openldap.org
Subject: Re: ldap.conf search order problem
From: Rich Megginson <rich.megginson@gmail.com>
Date: Thu, 04 Aug 2011 08:07:56 -0600
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:reply-to:user-agent:mime-version:to:subject :references:in-reply-to:content-type; bh=MYpM4zZIYpORa3FlNq1bgkWPuV/eBGS6/w1/1ax0Mbo=; b=pootaWHPugW2lWpHAMudT8LzprvOg7calnwq6eMCOL/JtQo6vvyAhMZYR9pvv7BL8q inbCrS3K4pXlVXHmMMmn2v5bfKU4EaM7QzPsXrIQ2iZ0xHPgO3wizmFkK9U+7CN3z8CB KyycUhykihMoY0GCFMqP06X91agddFSfYiVqw=
In-reply-to: <23004540.42808.1312457304742.JavaMail.www@wwinf8210>
References: <23004540.42808.1312457304742.JavaMail.www@wwinf8210>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.18) Gecko/20110617 Red Hat/3.1.11-2.el6_1 Lightning/1.0b3pre Thunderbird/3.1.11

On 08/04/2011 05:28 AM, Michel Gruau wrote:

Hello,

I have a proxy configuration with severall backend directories and one of them in TLS.

I thus added the following line in ldap.conf in order to let it know the remote server server CA certificate
TLS_CACERTÂÂÂÂÂ /opt/openldap/etc/openldap/cacert.pem

This is working when this line is inserted in $HOME/ldaprc or $HOME/.ldaprc but never working when inserted in the system-wide ldap configuration file (/usr/local/etc/openldap/ldap.conf).

Not working neither when inserted in /opt/openldap/etc/openldap/ldap.conf (my proxy is installed in /opt/openldap).

Is this a bug ? if not, what is the real ldap.conf search order ?

What platform?Â Did you build it yourself from source or was it a package?Â Do you know what TLS implementation (openssl, gnutls, moznss) it is using?

Thanks,
Michel

References:
- ldap.conf search order problem
  - From: Michel Gruau <michel.gruau@laposte.net>

Prev by Date: Re: OpenLDAP freezes and doesn't respond
Next by Date: TLS issue
Index(es):
- Chronological
- Thread