Re: ldap PDC -- Failed to issue the StartTLS instruction

[Ivan Ordonez <iordonez@nature.berkeley.edu>]

Quanah Gibson-Mount wrote:
> --On August 4, 2009 3:51:18 PM -0700 Ivan Ordonez 
> <iordonez@nature.berkeley.edu> wrote:
>
> > Hello,
> >
> > We've been using an ldap based PDC from quite a while.  Now we're
> > suddenly having trouble getting our main fileserver to talk with the
> > PDC.
> >
> > samba-3.2.13 on solaris 10.
> >
> > Here is our smb.conf global defs:
> >
> > Server role: ROLE_DOMAIN_MEMBER
> > [global]
> >         workgroup = CNRDOM
> >         server string = nature (Samba %v)
> >         security = DOMAIN
> >         passdb backend = ldapsam:ldaps://169.229.xxx.yyy
> >         log level = 5
> >         log file = /var/log/samba/log.%m
> >         name resolve order = wins host lmhosts
> >         os level = 65
> >         local master = No
> >         domain master = No
> >         dns proxy = No
> >         wins support = Yes
> >         ldap ssl = start tls
>
> ldaps:// and startTLS are mutually exclusive.  Pick one and only one.
We tried removing the "s" on ldaps:// and still no go.
> --Quanah
>
>
> --
>
> Quanah Gibson-Mount
> Principal Software Engineer
> Zimbra, Inc
> --------------------
> Zimbra ::  the leader in open source messaging and collaboration