[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ssl not working with ldapsearch

To: Xavier Poirier <xpoirier@ch-bourg01.fr>
Subject: Re: ssl not working with ldapsearch
From: Jon Roberts <man@mentata.com>
Date: Wed, 25 Feb 2004 10:19:31 -0600
Cc: openldap-software@OpenLDAP.org
In-reply-to: <1077721146.403cb83a8f30e@hermesadm.chb.fr>
References: <1077721146.403cb83a8f30e@hermesadm.chb.fr>
User-agent: Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.3.1) Gecko/20030425

Xavier Poirier wrote:

and the result of ldapsearch is :

ldap_bind: Can' t contact LDAP server (81)
additional info: error:14090086:SSL
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed

Why OpenLdap cannot get the server_certificate in this case ??

It probably gets the server cert fine, but can't get the CA cert. This is to be expected if you created your own CA. Try the ldapsearch again after adding the line:

TLS_REQCERT never

to your (applicable) ldap.conf file.

Jon Roberts
www.mentata.com

Follow-Ups:
- Re: ssl not working with ldapsearch
  - From: Jon Roberts <man@mentata.com>

References:
- ssl not working with ldapsearch
  - From: Xavier Poirier <xpoirier@ch-bourg01.fr>

Prev by Date: [SUMMARY] make test issue
Next by Date: Re: configuration so a search base is not required from an email client
Index(es):
- Chronological
- Thread