[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: openldap and SSL with AD

To: "'Tony Earnshaw'" <tonni@billy.demon.nl>, Daniel Barron <ldaplist@jadeb.com>
Subject: RE: openldap and SSL with AD
From: "Bennett, Tony - CNF" <Bennett.Tony@cnf.com>
Date: Fri, 14 Feb 2003 07:41:18 -0800
Cc: openldap-software@OpenLDAP.org

In 2.1.8 it is located:
	libraries/libldap/open.c


-----Original Message-----
From: Tony Earnshaw [mailto:tonni@billy.demon.nl] 
Sent: Friday, February 14, 2003 6:02 AM
To: Daniel Barron
Cc: openldap-software@OpenLDAP.org
Subject: Re: openldap and SSL with AD


fre, 2003-02-14 kl. 14:21 skrev Daniel Barron:

> > You're mixing START_TLS (which normally uses port 389) and LDAPS. 
> > The -ZZ
> > option requires START_TLS which is not supported by AD. Try using
> > ldap_initilize("ldaps://192.168.72.230").
> > Unless you're server certificate containes a subjectAltName extension of

> > type ip address, you'll also need to use the server's FQDN instead of
its 
> > IP.
> > 
> > See also http://www.openldap.org/faq/data/cache/185.html

> Thank you very much - thats most helpful.  I would like to know more 
> about ldap_initilize but I can't find a man page for it?  I also tried 
> looking for ldap_initialize, ldap_initialise, etc.

It's a C function - you'll find it in all the libldap libraries ;)

Best,

Tony

-- 

Tony Earnshaw

When you rob a person of his illusions,
you are robbing him of his happiness


e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl

Follow-Ups:
- RE: openldap and SSL with AD
  - From: Tony Earnshaw <tonni@billy.demon.nl>

Prev by Date: Re: Questions on ACL
Next by Date: RE: openldap and SSL with AD
Index(es):
- Chronological
- Thread