[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP over TLS



Hi Dan,

It gives the following output:

 linux-vdso.so.1 =>  (0x00007ffca9bec000)
        libldap_r-2.4.so.2 => /usr/lib/x86_64-linux-gnu/libldap_r-2.4.so.2 (0x00007fee3c95b000)
        liblber-2.4.so.2 => /usr/lib/x86_64-linux-gnu/liblber-2.4.so.2 (0x00007fee3c74c000)
        libslp.so.1 => /usr/lib/libslp.so.1 (0x00007fee3c539000)
        libsasl2.so.2 => /usr/lib/x86_64-linux-gnu/libsasl2.so.2 (0x00007fee3c31e000)
        libcrypt.so.1 => /lib/x86_64-linux-gnu/libcrypt.so.1 (0x00007fee3c0e5000)
        libslapi-2.4.so.2 => /usr/lib/x86_64-linux-gnu/libslapi-2.4.so.2 (0x00007fee3bec6000)
        libltdl.so.7 => /usr/lib/x86_64-linux-gnu/libltdl.so.7 (0x00007fee3bcbc000)
        libwrap.so.0 => /lib/x86_64-linux-gnu/libwrap.so.0 (0x00007fee3bab2000)
        libpthread.so.0 => /lib/x86_64-linux-gnu/libpthread.so.0 (0x00007fee3b893000)
        libc.so.6 => /lib/x86_64-linux-gnu/libc.so.6 (0x00007fee3b4ce000)
        libresolv.so.2 => /lib/x86_64-linux-gnu/libresolv.so.2 (0x00007fee3b2b3000)
        libgssapi.so.3 => /usr/lib/x86_64-linux-gnu/libgssapi.so.3 (0x00007fee3b074000)
        libgnutls.so.26 => /usr/lib/x86_64-linux-gnu/libgnutls.so.26 (0x00007fee3adb6000)
        libgcrypt.so.11 => /lib/x86_64-linux-gnu/libgcrypt.so.11 (0x00007fee3ab36000)
        libdl.so.2 => /lib/x86_64-linux-gnu/libdl.so.2 (0x00007fee3a931000)
        libnsl.so.1 => /lib/x86_64-linux-gnu/libnsl.so.1 (0x00007fee3a717000)
        /lib64/ld-linux-x86-64.so.2 (0x00007fee3cf53000)
        libheimntlm.so.0 => /usr/lib/x86_64-linux-gnu/libheimntlm.so.0 (0x00007fee3a50d000)
        libkrb5.so.26 => /usr/lib/x86_64-linux-gnu/libkrb5.so.26 (0x00007fee3a285000)
        libasn1.so.8 => /usr/lib/x86_64-linux-gnu/libasn1.so.8 (0x00007fee39fe4000)
        libcom_err.so.2 => /lib/x86_64-linux-gnu/libcom_err.so.2 (0x00007fee39ddf000)


On Tue, Jul 14, 2015 at 11:09 PM, Dan White <dwhite@cafedemocracy.org> wrote:
Dan White wrote:

ldap_start_tls: Protocol error (2)
additional info: unsupported extended operation


Which ssl library is your slapd compiled against? See the slapd-config
manpage for appropriate configuration for your ssl lib.

On 07/14/15 23:05 +0500, Aneela Saleem wrote:
Hi Dan,

I found three libraries in mangpages of slapd-config i.e., OpenSSL, GnuTLS,
or Mozilla NSS

Correct, as OpenLDAP supports all three of those libraries. Consult your
system documentation for which library your binary slapd was linked
against.

This should give you a hint:

~# ldd `which slapd`

--
Dan White