[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: error in SSLv3 read client certificate



Jittinan Suwanrueangsri <jittinan2@gmail.com> writes:

> Dear all
>
> After I execute command " ldapsearch -x -W -D 'cn=admin,dc=example,dc=com' -ZZ
> '(uid=david)' " I get following log portion(debug at level 1):
>
> slapd starting
> slap_listener_activate(8):
>>>> slap_listener(ldap:///)
[...]
> connection_read(13): unable to get TLS client DN, error=49 id=0
[...]
> What cause these errors? ,What do these errors mean?
>
> TLS trace: SSL_accept:error in SSLv3 read client certificate A
> TLS trace: SSL_accept:error in SSLv3 read client certificate A
> connection_read(13): unable to get TLS client DN, error=49 id=0
>
> How can I fix these problems?

The error report is quite clear, the client presented a certificate of
which the DN does not match the requirements.
You presumably require a client certificate verification by the
server.

-Dieter

-- 
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:8EF7B6C6
53°08'09,95"N
10°08'02,42"E