[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapsearch ignoring ldap.conf (ITS#2697)

To: openldap-its@OpenLDAP.org
Subject: Re: ldapsearch ignoring ldap.conf (ITS#2697)
From: Kurt@OpenLDAP.org
Date: Wed, 3 Sep 2003 14:46:35 GMT

This is expected (and documented) behavior.  Not a bug.  This issue
will be closed.

Kurt

At 05:42 AM 9/2/2003, rodrigo.lists@fabricadeideias.com wrote:
>Full_Name: Rodrigo Severo
>Version: 2.1.22
>OS: Conectiva Linux 9
>URL: 
>Submission from: (NULL) (200.140.13.55)
>
>
>ldapsearch is ignoring entries in ldap.conf.
>
>I use the following entries in ldap.conf:
>
>TLS_CACERT      /etc/ssl/certs/cr_aa.pem
>TLS_CERT        /etc/ssl/certs/fellini.cert
>TLS_KEY /etc/ssl/private/fellini.key
>
>and I can't connect to a SSL only OpenLDAP server which give me the following
>error:
>
>TLS trace: SSL3 alert write:fatal:handshake failure
>TLS trace: SSL_accept:error in SSLv3 read client certificate B
>TLS: can't accept.
>TLS: error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return
>a certificate s3_srvr.c:1977
>
>If I create a .ldaprc file with exactly the same entries, ldapsearch does
>connect nicefully to the same OpenLDAP server.
>
>I straced ldapsearch and saw that it is reading my ldap.conf file but it nevers
>tries to read my cert files when I don't have a .ldaprc file.

Prev by Date: 2.1 admin guide typo about kerberos principals (ITS#2695)
Next by Date: Re: syncinfo_t.tlimit should be struct timeval * (ITS#2592)
Index(es):
- Chronological
- Thread