[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: ldapsearch TLS error

To: "John Green" <green@blueheronbio.com>, "openldap-software $E-mail$" <openldap-software@OpenLDAP.org>
Subject: RE: ldapsearch TLS error
From: "Howard Chu" <hyc@highlandsun.com>
Date: Fri, 19 Apr 2002 16:02:31 -0700
Importance: Normal
In-reply-to: <000d01c1e7ce$56e5bb20$0a00000a@blueheronbio.com>

> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of John Green

> Thanks for the input, but I modified the /etc/ldap.conf file to
> match my dn
> before I first started ldap on the machine. When I first got the error, I
> tried adjusting the TLS settings in the same file and still no
> luck. I think
> this is an issue with upgrading the OpenLDAP version on RH72 and somehow
> breaking the dependencies with OpenSSL.

I think you misunderstood my point. You need to set the default host, or the
default URI, to the fully qualified domain name of your server. I wasn't
talking about matching the DN, though obviously doing that makes things more
convenient.

Use either
	HOST	server.sub.domain
or
	URI	ldap://server.sub.domain

to set your default search host.

> But, on a brighter note, I think I will just stick with the
> version of RH's
> OpenLDAP rpm that I know works (2.0.11), and eventually get around to
> testing a more recent version.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

Follow-Ups:
- RE: ldapsearch TLS error
  - From: "John Green" <green@blueheronbio.com>

References:
- RE: ldapsearch TLS error
  - From: "John Green" <green@blueheronbio.com>

Prev by Date: RE: can I use a kerberos ticket with ldapsearch (and ldap libraries)
Next by Date: RE: can I use a kerberos ticket with ldapsearch (and ldap libraries)
Index(es):
- Chronological
- Thread