[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: OpenLDAP TLS libs can't figure out domains (ITS#2821)



This works as designed. See RFC2830, section 3.6.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support 

> -----Original Message-----
> From: owner-openldap-bugs@OpenLDAP.org
> [mailto:owner-openldap-bugs@OpenLDAP.org]On Behalf Of quanah@stanford.edu

> Full_Name: Quanah Gibson-Mount
> Version: OpenLDAP-2.1.23
> OS: Solaris 8
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (171.64.19.82)
> 
> 
> ldapsearch -ZZZ -h ldap0 uid=quanah
> -> TLS: hostname does not match CN in peer certificate
> 
> ldapsearch -ZZZ -h ldap0.stanford.edu uid=quanah
> 
> <works fine>
> 
> --Quanah
> 
> 
>