Full_Name: Dieter Kluenter Version: OS: OpenSUSE URL: ftp://ftp.openldap.org/incoming/dkluenter-20-07-17-autoca.patch Submission from: (NULL) (93.214.247.185) test066-autoca aborts with adding new entry "cn=module,cn=config" adding new entry "olcOverlay=autoca,olcDatabase={1}mdb,cn=config" dn: cn=localhost,ou=Servers,dc=example,dc=com userCertificate;binary: userPrivateKey;binary: ldap_start_tls: Connect error (-11) additional info: TLS: hostname does not match CN in peer certificate this small patch solves this error
has patch
changed notes
Created attachment 672 [details] dkluenter-20-07-17-autoca.patch
Hi Dieter, Your change removes startTLS from being critical, which is a critical part of what's being tested. I.e., it allows the startTLS operation to fail. If you're still seeing this issue, it would imply that your system does not have a validly configured "localhost". Regards, Quanah