[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Slapd, GNUTLS on Debian/Squeeze



>> ldapsearch -W -H ldaps://myip/
>> TLS: can't connect: Error in the push function..
>> ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
>> 
> 
> No, this will connect on default port 389 with SSL/ldaps, isn't what you want.

a small correction.  specifying an uri with a scheme of ldaps will implicitly define that port 636 is used, as it should be, since port 636 is for ldaps.  ldapsearch -W -H ldaps://myip/ will not result in port 389 being used, but rather, is the same as ldapsearch -W -H ldaps://myip:636/

>ldapsearch -d -1 -H 'ldaps://localhost/'
ldap_url_parse_ext(ldaps://localhost/)
ldap_create
ldap_url_parse_ext(ldaps://localhost:636/??base)
ldap_pvt_sasl_getmech
ldap_search
put_filter: "(objectclass=*)"
put_filter: simple
put_simple_filter: "objectclass=*"
ldap_build_search_req ATTRS: supportedSASLMechanisms
ldap_send_initial_request
ldap_new_connection 1 1 0
ldap_int_open_connection
ldap_connect_to_host: TCP localhost:636
ldap_new_socket: 3
ldap_prepare_socket: 3
ldap_connect_to_host: Trying ::1 636
ldap_pvt_connect: fd: 3 tm: -1 async: 0
tls_write: want=93, written=93