Re: Have you seen this FUD - IT pros suffer OpenLDAP configuration headaches ?

[Wiebe Cazemier <wiebe@halfgaar.net>]

----- Original Message -----
> (snip)
> (long)
> (snip)

I am by no means an LDAP expert, but as an experienced Linux sysadmin I do have to say that I have had some very tricky issues with OpenLDAP. 

One of them involved fiddling for days with difficulty changing the root password, after finally finding out that the Ubuntu docs were wrong [1]; they had cause me to create two admin users, with the passwords in plain text no less.

The other involved getting 'TLS required' on the TCP connection, which seems to be undocumented. My question on Serverfault about it [2] is getting to be quite popular. Forcing encryption would have been a lot easier if a different port for SSL wasn't deprecated.

[1] https://bugs.launchpad.net/serverguide/+bug/1094842
[2] https://serverfault.com/questions/459718/configure-openldap-with-tls-required