[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch and TLS



> > ldapsearch -h localhost -v -Z -D "uid=me,ou=People,o=cs.ubc.ca" -LLL \
> >  -b "uid=someonelse,ou=People,o=cs.ubc.ca" 
> > ldap_init( localhost, 0 )
> > ldap_start_tls: Connect error
> > ldap_sasl_interactive_bind_s: Can't contact LDAP server
> > 
> > Here's  what the  server logs  say (-d  1023). Any  idea  what's going
> > wrong? The manpages, as usual,  incorrectly assume that I already know
> > what I'm doing. 
> 
> The certificate info doesn't look right. You should be seeing the
> issuer, subject and cert details (use log level -d -1). Have you made
> .der format certs, by any chance? They must be .pem format.

No, they are .pem. What in  the logs tips you off that the certificate
info doesn't look right? Or is it something else? 

-chris