[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7744) [Patch] TLS_REQCERT section in ldap.conf is confusing

Full_Name: Jan Synacek
Version: master
OS: Linux - Fedora 19
URL: http://jsynacek.fedorapeople.org/openldap/jsynacek-20131113-0001-Fix-client-manpage.patch
Submission from: (NULL) (

Quoting ldap.conf(5):

   try    The  server  certificate  is  requested. If no certificate is
provided, the session proceeds normally. If a bad certificate is provided, the
session is immediately terminated.

There is currently no way how to "provide no server certificate" and
successfully connect via a client (e.g. ldapsearch).

For additional discussion, see