Re: SSL3 alert write:fatal:unknown CA

[Quanah Gibson-Mount <quanah@stanford.edu>]

--On Thursday, June 26, 2003 11:00 PM +0200 Pierre Burri 
<pierre@globeall.de> wrote:

> Hi Kent,
> I looked in your excellent Document OpenLDAP_TLS_howto, also because
> Quanah  Gibson-Mount mentioned it.
>
> In Chapter 7 Using TLS you give the following example:
>
> ldapsearch -x -b 'dc=myserver,dc=com' -D "cn=Manager,dc=myserver,dc=com"
> '(objectclass=*)' -H ldaps://myserver.com -W -ZZ
>
> I thought TLS was working on port 389 and only SSL was using ldaps://
> If that's true the command would be:

Pierre, SSL and TLS are essentially the same thing.  OpenLDAP does SSL+TLS 
on port 389.  By specifying ldaps://, you request that it make an encrypted 
call to the OpenLDAP server, via SSL/TLS encryption.

--Quanah

--
Quanah Gibson-Mount
Senior Systems Administrator
ITSS/TSS/Computing Systems
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html