Re: fedora and openldap

[Quanah Gibson-Mount <quanah@zimbra.com>]

--On Tuesday, April 12, 2011 7:10 PM +0200 Judith Flo Gaya <jflo@imppc.org> 
wrote:

> I'm posting all the information together in this e-mail, hope you can
> help me out, I'm quite desperate at this point.
>
> Following your advise I tried to set TLS in my server and client.
> I generated the certificates for both client and server (self signed) and
> sent the cacert file from the server to the clients.
>
> I started the server like this:
> /usr/local/libexec/slapd -u ldap -h ldaps://curri0.imppc.local:636 -f
> /usr/local/openldap-2.4.25/etc/openldap/slapd.conf -d 1
>
> ( I installed a newer version of openldap in my server as the RH6 uses an
> old one, I compiled it with tls and openssl)
>
>  From the client I do :
>   ldapsearch -x -ZZ -d1 -h curri0.imppc.local:636

This is a startTLS request.  You are using LDAPS.  This will never work.

Try

ldapsearch -x -H ldaps://curri0.imppc.local:636/

instead.

--Quanah


--

Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration