[Date Prev][Date Next]
Re: ldapsearch and TLS
> > ldapsearch -h localhost -v -Z -D "uid=me,ou=People,o=cs.ubc.ca" -LLL \
> > -b "uid=someonelse,ou=People,o=cs.ubc.ca"
> > ldap_init( localhost, 0 )
> > ldap_start_tls: Connect error
> > ldap_sasl_interactive_bind_s: Can't contact LDAP server
> > Here's what the server logs say (-d 1023). Any idea what's going
> > wrong? The manpages, as usual, incorrectly assume that I already know
> > what I'm doing.
> The certificate info doesn't look right. You should be seeing the
> issuer, subject and cert details (use log level -d -1). Have you made
> .der format certs, by any chance? They must be .pem format.
No, they are .pem. What in the logs tips you off that the certificate
info doesn't look right? Or is it something else?