> # openssl verify -CAfile /etc/openldap/cacerts/cacert.pem -purpose
> sslserver /var/lib/ldap/servercrt.pem
Yep, sure did, it verified ok. (See original email for the output)
That's why I'm so puzzled. I just ran an strace on the server side on
slapd, just to make sure it's opening /etc/openldap/slapd.conf and
/var/lib/ldap/servercrt.pem and it is. Just double checked that the
cacert.pem on the client is the same as the one on the server and that
both of them verify the servercrt ok. Just stumped now.
Interestingly, when I do:
# strace -o /tmp/strace.log /usr/sbin/slapd on the server, I get all the
strace of the slapd startup, but it then seems to detatch, so that when
I hit it with a client, it's no longer producing slapd output. Anyone
know why? Thought that might be useful information to gather, to see
what the slapd is doing in response to the ldapsearch query.
--
Fran Fabrizio
Senior Systems Analyst
Department of Computer and Information Sciences
University of Alabama at Birmingham
http://www.cis.uab.edu/
205.934.0653
---
You are currently subscribed to [email protected] as: [EMAIL PROTECTED]
To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the
SUBJECT of the message.
