[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SSL3 alert write:fatal:unknown CA

--On Thursday, June 26, 2003 11:00 PM +0200 Pierre Burri <pierre@globeall.de> wrote:

Hi Kent,
I looked in your excellent Document OpenLDAP_TLS_howto, also because
Quanah  Gibson-Mount mentioned it.

In Chapter 7 Using TLS you give the following example:

ldapsearch -x -b 'dc=myserver,dc=com' -D "cn=Manager,dc=myserver,dc=com"
'(objectclass=*)' -H ldaps://myserver.com -W -ZZ

I thought TLS was working on port 389 and only SSL was using ldaps://
If that's true the command would be:

Pierre, SSL and TLS are essentially the same thing. OpenLDAP does SSL+TLS on port 389. By specifying ldaps://, you request that it make an encrypted call to the OpenLDAP server, via SSL/TLS encryption.


Quanah Gibson-Mount
Senior Systems Administrator
ITSS/TSS/Computing Systems
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html