[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: [EXTERNAL] Re: back-ldap and ldaps not working

To: Ryan Tandy <ryan@nardis.ca>, Jon C Kidder <jckidder@aep.com>
Subject: Re: [EXTERNAL] Re: back-ldap and ldaps not working
From: Quanah Gibson-Mount <quanah@symas.com>
Date: Wed, 12 Jul 2017 11:45:24 -0700
Cc: openldap-technical@OpenLDAP.org
Content-disposition: inline
In-reply-to: <WM!3e8742b412762cce964c25a45ff6e9463fe240db7c37b4d3b3d802d846d3ff84b6b1e02863308aff48deea0c1d1023b9!@mailstronghold-1.zmailcloud.com>
References: <677F33420B725A4D9E0066554451BDACE9D9679C@VMAEPHQMS001.corp.aepsc.com> <WM!909bfe074a2495f47775cf76ca559c339fce739af124170cf148add0b39e6a1b47570fbd fe5c7cd02a8b11b2dd148767!@mailstronghold-2.zmailcloud.com> <BE88F93C26C0AD98FB81992C@[192.168.1.30]> <677F33420B725A4D9E0066554451BDACE9D9695F@VMAEPHQMS001.corp.aepsc.com> <80344f05-9fa0-b182-5bc4-865ef08fcbe8@stroeder.com> <973F24F1-8A60-4EB8-B86A-1ABF480C9C19@aep.com> <3715b9e9-1b56-c042-4720-d4a13d68f2fc@stroeder.com> <WM!bd381ed02e68040c93e62b5d0546d5b1891bfbaa16e289c3d4f7fdcd4a57af6f56fba9136feeefe690cd00c5476f2462!@mailstronghold-1.zmailcloud.com> <131D1672949FEF4066965F94@[192.168.1.30]> <677F33420B725A4D9E0066554451BDACF255F756@VMAEPHQMS001.corp.aepsc.com> <20170712180404.GB10666@comet.nardis.ca> <WM!3e8742b412762cce964c25a45ff6e9463fe240db7c37b4d3b3d802d846d3ff84b6b1e02863308aff48deea0c1d1023b9!@mailstronghold-1.zmailcloud.com>

--On Wednesday, July 12, 2017 12:04 PM -0700 Ryan Tandy <ryan@nardis.ca>wrote:

On Wed, Jul 12, 2017 at 05:57:51PM +0000, Jon C Kidder wrote:

I then see an fopen for this file
/appl/openldap/etc/openldap/tls/3a89cd48.0.  I have no idea where this
file name came from.


http://www.openldap.org/doc/admin24/tls.html#TLS_CACERTDIR%20%3Cpath%3E

https://www.openssl.org/docs/man1.1.0/apps/c_rehash.html

If there is nothing in his code OR ~/.ldaprc, system ldap.conf, etc,referencing the TLS_CACERTDIR then it seems there's a bug, since it shouldonly be trying to find the CA Cert hash if that's been set.


--Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

References:
- back-ldap and ldaps not working
  - From: Jon C Kidder <jckidder@aep.com>
- Re: back-ldap and ldaps not working
  - From: Quanah Gibson-Mount <quanah@symas.com>
- RE: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Jon C Kidder <jckidder@aep.com>
- Re: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Michael Ströder <michael@stroeder.com>
- Re: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Jon C Kidder <jckidder@aep.com>
- Re: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Michael Ströder <michael@stroeder.com>
- Re: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Quanah Gibson-Mount <quanah@symas.com>
- RE: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Jon C Kidder <jckidder@aep.com>
- Re: [EXTERNAL] Re: back-ldap and ldaps not working
  - From: Ryan Tandy <ryan@nardis.ca>

Prev by Date: Re: [EXTERNAL] Re: back-ldap and ldaps not working
Next by Date: Re: multi-value attribute rejected
Index(es):
- Chronological
- Thread