[Date Prev][Date Next]
(ITS#8610) ldaps not usable with DNS SRV
Full_Name: Silvio Wanka
OS: FreeBSD 10.3-RELEASE-p16
Submission from: (NULL) (126.96.36.199)
if I use "ldap:///dc%3Dexample%2Cdc%3Dorg" on a test system all works properly
but I must use LDAPS on a DMZ system and so I try
"ldaps:///dc%3Dexample%2Cdc%3Dorg" but this search for a ldap DNS SRV record
which of course returns the normal ldap port not the ldaps port. This can't
work, because a firewall is between.
Is this normal (by design) or an bug? There is also an old discussion on your
IMO should OpenSSL either support DNS SRV lookup for each scheme or for none.