[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: reg ldap over ssl

On Wed, 2 Jul 2008, prasanth allada wrote:
i used ldap_initialize and tried initializing the connection using the CA certificate. i still am getting the same error.

Uh huh. I wrote:
Right, because ldap_start_tls_s() performs the LDAP start TLS operation,
but for ldaps the client is supposed to simply negotiate TLS/SSL upon
connection, without sending an LDAP operation first.

I.e., don't use ldap_start_tls_s() with an "ldaps" URI! Simply remove that call from your code. SSL will automatically be negotiated when the connection is actually opened.

Philip Guenther