[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS fails

Aaron Richton wrote:
Sounds like you're on the right track with the server. But I see no note
of using ldap.conf or .ldaprc to set TLS_CACERT directive for your client.
See ldap.conf(5).

For a local CA, you will also want the line:

TLSCACertificateFile /path/to/your/cacert.pem

in your slapd.conf file. The error message you are getting indicates that you are not finding the CA for verification.

Jon Roberts