[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS issue with SLES11

To: openldap-technical openldap org <openldap-technical@openldap.org>
Subject: Re: TLS issue with SLES11
From: Marc Patermann <hans.moser@ofd-z.niedersachsen.de>
Date: Mon, 29 Aug 2011 09:41:25 +0200
Cc: pradyumna dash <neomatrixgem@gmail.com>
In-reply-to: <CA+LU3B4CgRrn054+s2qgn4AZq-wvHJzG6GKQ2eghJjBSdgekzw@mail.gmail.com>
References: <CA+LU3B4E+5Z8gh-QJu7bwNggwo2iNC2ZX6aTyUzv=z5hGT0yWA@mail.gmail.com> <CAN=LG+MkeJaPGuwSYzT90J2YzMjBej_KFSNzSdeedgpq66kNyg@mail.gmail.com> <CA+LU3B4CgRrn054+s2qgn4AZq-wvHJzG6GKQ2eghJjBSdgekzw@mail.gmail.com>
User-agent: Thunderbird 2.0.0.18 (Windows/20081105)

Hi,

pradyumna dash schrieb am 27.08.2011 12:23 Uhr:

I want to achieve ldaps, that means all the communication should use 636port, i have changed the parameters in the /etc/openldap/sysconfig file,but no luck.

I don't understand what you want, either.

As you wrote "netstat .lnap |grep ldap it shows both 636 and 389 portlisttening" and "ldapsearch -x -H ldaps://hostname, its also showing methe ldap contents" which is what you wand: ldaps.

If you do not like to open port 389 - what you did not write - youshould check /etc/sysconfig/openldap:

# If set to "no" the LDAP server will not accept any "normal" LDAPconnections# but just connections over "ldaps" or "ldapi". Setting this to "no"does only

# make sense when either OPENLDAP_START_LDAPS or OPENLDAP_START_LDAPI is set
# "yes".
#
OPENLDAP_START_LDAP="yes"


Marc

References:
- TLS issue with SLES11
  - From: pradyumna dash <neomatrixgem@gmail.com>
- Re: TLS issue with SLES11
  - From: Benjamin Griese <der.darude@gmail.com>
- Re: TLS issue with SLES11
  - From: pradyumna dash <neomatrixgem@gmail.com>

Prev by Date: RE: Read-only Back-SQL
Next by Date: RE: N-way multi master configuration issue
Index(es):
- Chronological
- Thread