Re: Unable to bind LDAP server via SSL

To: Dan White <dwhite@olp.net>

Subject: Re: Unable to bind LDAP server via SSL

From: Ashwin Kumar <ashwinkumark10@gmail.com>

Date: Mon, 10 Jun 2013 19:40:30 +0530

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=URk771SvxLD+dOFzT4t4BlAhLwq93xaXQwnWiMtFrW8=; b=Lq4oW3gmodV4PBj3KHmYDMggQcoDyPLSDiwHi5NForguwwxBWMDIClONwncu18D3kn DkAKQ5wGikxciAXOUY7utLJtcm6Gt4SqwabYU6vTaIL+KAEniRAq5JQuxu8tZAzWGrcL dw06UyaANlohZZHsROKWXqrx9V7hEMMifzXf+rQScRtNTmG/cMcwye7GxHC58Y55okR1 RUh58Xx3/nxPxIsDDkr2pR0cX71xSaYzhxZPmCJvcxJz8XywRQTVyOcZjs/tmEibmTTY b/hr1ms13z1pMxUIV9KQWsffWpx2+k8Dkf1L60cL20J/kPoCPQpiD+csutGq3iaKhHFl YhzA==

In-reply-to: <20130610134812.GC6842@dan.olp.net>

References: <CAN4SqyJinPMbSU5-gWkX2BC+3Lm7XqtEBn33xxpGORRSzpyxag@mail.gmail.com> <20130610134812.GC6842@dan.olp.net>

On Mon, Jun 10, 2013 at 7:18 PM, Dan White <dwhite@olp.net> wrote:

Can you connect to the server using any of the OpenLDAP client utilities
(e.g. ldapwhoami) using -Z? start_tls cannot be executed against an
ldaps:// URI, to my knowledge.

Yes, I am able to use ldapsearch and ldapadd. It works fine.

I am not trying to execute start_tls on ldaps://. I know they work entirely different.

On a non encrypted port I am trying to set up encryption calling start_tls. But does not work.

The library is compiled with --with-tls option.

The server supports both encryption (ldaps:// and ldap://+tls) and no encryption.

Ashwin kumar

(http://ashwinkumar.me)

References:

Unable to bind LDAP server via SSL
- From: Ashwin Kumar <ashwinkumark10@gmail.com>
Re: Unable to bind LDAP server via SSL
- From: Dan White <dwhite@olp.net>