[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS/SSL problems

To: openldap-software@openldap.org
Subject: Re: TLS/SSL problems
From: "Dieter Kluenter" <dieter@dkluenter.de>
Date: Wed, 23 May 2007 14:07:16 +0200
In-reply-to: <46539AB5.3010602@pobox.com> (Craig's message of "Tue, 22 May 2007 18:36:53 -0700")
References: <46539AB5.3010602@pobox.com>
User-agent: Gnus/5.1006 (Gnus v5.10.6) XEmacs/21.5 (chestnut, linux)

Craig <craig5@pobox.com> writes:

> I am running openldap 2.2.13. I am having a problem getting TLS to
> work. I have done numerous searches, but most web pages seem to deal
> with LDAP/kerberos issues. We do not run kerberos. I am only trying to
> prevent passwords from being sent in the clear.
>
> I have followed the instructions on this page:
>
> http://www.ibm.com/developerworks/linux/library/l-openldap/
>
>
> I am able to run ldapsearch with simple auth:
>  > ldapsearch -x
>
> but, am not able to do any of the following:
>  > ldapsearch
>  > ldapsearch -X u:myuid
>  > ldapsearch -X dn:uid=myuid,ou=People,dc=example,dc=com

You are trying proxy authorization, this requires a SASL mechanism,
something like 
ldapsearch -X u:<uid> -Y digest-md5

-Dieter

-- 
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8EF7B6C6

References:
- TLS/SSL problems
  - From: Craig <craig5@pobox.com>

Prev by Date: RE: TLS/SSL problems
Next by Date: LDAP and MySQL - No database selected
Index(es):
- Chronological
- Thread