[Date Prev][Date Next] [Chronological] [Thread] [Top]

How to log in syslog TLS connections?

To: OpenLDAP <openldap-software@OpenLDAP.org>
Subject: How to log in syslog TLS connections?
From: Laurent Mesuré <lmesure@nerim.net>
Date: Wed, 30 Jun 2004 14:44:55 +0200
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fr-FR; rv:1.6) Gecko/20040113

Hi,

i have secured my LDAP server with TLS.

I've define ma CA certificate along with my LDAP certificate and key file.

When i try to do a ldapsearch without valid certificate it fails but with a valid certificate it succeed.

Actually my loglevel is 768

I try to identify the logs that gave me info abnout TLS handshake and connection.

I believe that when i have:

Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 fd=17 ACCEPT from IP=<client ip address>:32805 (IP=0.0.0.0:389) Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" method=128 Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 BIND dn="<bind dn>" mech=simple ssf=0

does mech=simple state for a normal auth? and not a TLS method of connection?

Jun 30 14:38:23 wilfrid slapd[1356]: conn=28 op=0 RESULT tag=97 err=0 text=

This logs comes from my postfix connection to the LDAP, normally it should use the TLS method. It does when using ldapsearch.

Laurent

Follow-Ups:
- Re: How to log in syslog TLS connections?
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: ACL the 3rd try...
Next by Date: Re: LDAP TLS/SSL Security problem
Index(es):
- Chronological
- Thread