[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: what's the differnce?

To: OpenLDAP Software List <openldap-software@OpenLDAP.org>
Subject: Re: what's the differnce?
From: Christian Schäfer <caefer@krachstoff.net>
Date: Tue, 13 Jul 2004 06:59:48 +0200
In-reply-to: <1089669366.29428.10.camel@eclair>
References: <40F2F370.8010400@krachstoff.net> <1089669366.29428.10.camel@eclair>
User-agent: Mozilla Thunderbird 0.7.2 (Windows/20040707)

Christopher Schadl wrote:

Port 636 is used for LDAP over SSL. In order for that to work, you will need to have generated an SSL certificate for the LDAP server to use, and the SSL certificate will have to have the fully qualified domain name of the LDAP server set as it's Common Name attribute. If you're just communicating with the LDAP server in question via localhost, then you shouldn't need SSL, (you can just set the -p option to use the default LDAP port of 389) however, if you're communicating over a network then you should definatley read http://www.openldap.org/pub/ksoper/OpenLDAP_TLS_howto.html for more information on setting up SSL/TLS.

yes, sorry.. I should have mentioned that. my ldap _is_ listening on 636 over ssl already.

netstat -tnpl shows slapd listening on 0.0.0.0:636. all certificates are available. that's not the problem. :-)


but I will check out if the order of options will change things.


regards
/christian

Follow-Ups:
- Re: what's the differnce?
  - From: "Pierangelo Masarati" <ando@sys-net.it>
- Re: what's the differnce?
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

References:
- what's the differnce?
  - From: Christian Schäfer <caefer@krachstoff.net>
- Re: what's the differnce?
  - From: Christopher Schadl <cschadl@satan.org.uk>

Prev by Date: Re: About the backend in slapd.conf
Next by Date: Re: what's the differnce?
Index(es):
- Chronological
- Thread