[Date Prev][Date Next]
Re: TLS/SSL problem - unsupported certificate
Tony Earnshaw wrote:
Howard Chu wrote, on 11. apr 2007 08:11:
So, if the goal is to use certificate-based authentication, then the
solution is to generate a proper certificate without any usage
restrictions on it, or one that says it can be used for client
If the goal isn't to use certificate-based authentication, then some of
your advice is correct.
It seemed to me that OP was simply trying to establish an encrypted
connection, as so many have done in the past and slapd was barfing on a
missing client cert.
The error message pretty clearly says the certificate is unsupported.
That's quite different from saying the certificate is missing. Ignoring
the error message will generally lead you down a lot of dead ends...
-- Howard Chu
Chief Architect, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/