[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Slapd, GNUTLS on Debian/Squeeze

On Sat,  May 21, 2011 at 12:04 PM, David Dumortier <d.dumortier@free.fr> wrote:
>> >>
>> >> I suspect you are running ldap:// on port 636.
>> >
>> > ldapsearch -W -H ldap://myip:636/
>> > ldap_result: Can't contact LDAP server (-1)
>> >
>> No, -H ldaps://myip:636/ (to SSL/ldaps).
> Tried it with same result :-(

You're really using a Certificate file (and not a CSR)?

Ldap client will  validade the server certificate, you should especify
TLS_CACERT /to/file or TLS_REQCERT never on /etc/ldap/ldap.conf

Reinaldo de Carvalho

"While not fully understand a software, don't try to adapt this
software to the way you work, but rather yourself to the way the
software works" (myself)