Am 04.10.2011 18:59, schrieb Dan White:
Sorry for that confusion Howard and thanks for you help Dan, I will work with the man page now and will create a new better topic if needed.On 04/10/11 09:22 -0700, Howard Chu wrote:Dan White wrote:On 03/10/11 21:43 +0200, Andreas Rudat wrote:Am 03.10.2011 20:51, schrieb Dan White:On 03/10/11 19:41 +0200, Andreas Rudat wrote:tls_cert tls_keyMy mail client may have corrupted this part of your configuration. You'llof course need valid entries here.These options are defaults in my conf. With some comments, after installing the slapd packageYou'll need to create a (client) certificate and populate those two values, or otherwise find a way to specify them while performing your ldapsearchcommand.I don't see how you will will be able to obtain SASL EXTERNAL over STARTTLSotherwise.How did this conversation get to STARTTLS? The Subject is asking about SASL EXTERNAL over ldapi, which does not need TLS.I was led down that path via the howto referenced in the original post, andmade several, possibly incorrect, assumptions about what the end goal is.
Andreas