[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: connection problem with ldapmodify -Y EXTERNAL -H ldapi:///



Dan White wrote:
On 03/10/11 21:43 +0200, Andreas Rudat wrote:
Am 03.10.2011 20:51, schrieb Dan White:
On 03/10/11 19:41 +0200, Andreas Rudat wrote:
tls_cert
tls_key

My mail client may have corrupted this part of your configuration. You'll
of course need valid entries here.

These options are defaults in my conf. With some comments, after
installing the slapd package

You'll need to create a (client) certificate and populate those two values,
or otherwise find a way to specify them while performing your ldapsearch
command.

I don't see how you will will be able to obtain SASL EXTERNAL over STARTTLS
otherwise.

How did this conversation get to STARTTLS? The Subject is asking about SASL EXTERNAL over ldapi, which does not need TLS.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/