Re: ldap+ssl+Active directory

["Kurt D. Zeilenga" <Kurt@OpenLDAP.org>]

At 12:25 AM 7/6/2004, Ainhoa Prat wrote:
>The exact error when I do ldapsearch -Hldaps://ladpserver -x is:
>
>ldap-bind: can't contact ldapserver(81)
>  additional info: error 14090086 : SSL routines: 
>SSL3_GET_SERVER_CERTIFICATE: cretificate certify failed.
>
>When I do :
>openssl s_cleint -connect ldapserver:636 -showcerts
>
>CONNECTED(00000003)
>depth=0 /CN=ldapserver
>verify error:num27:certificate not trusted
>verify return:1
>depth=0 /CN_ldapserver
>verify error: num=21:unable to verify the first cretificate
>verify return :1

Configure OpenLDAP Software to trust the CA certificate
which issued the server's certificate.  See ldap.conf(5)
for details.

Kurt