On Wednesday 21 February 2007 10:22, Rogier Krieger wrote:
> Personally, I'm having trouble using login-ldap with my local(host)
> LDAP server using SSL. It refuses to connect and I can't find where
> the problem lies. But since the two run on the same server, I manage
> to live with unsecured connections.
>
In my ldap.conf on a machine called ftl2, I have
ftl2# more /etc/openldap/ldap.conf
HOST ftl3.sankars.com
BASE dc=foretell,dc=ca
TLS_CHECKPEER yes
URI ldaps://ftl3.sankars.com
SSL start_tls
TIMELIMIT 25
SIZELIMIT 25
TLS_REQCERT allow
TLS_CACERT /etc/ssl/certs/ca.crt
login.conf has the following:
ldap:\
:requirehome@:\
:auth=-ldap:\
:x-ldap-server=a.b.c.d:\
:x-ldap-port=636:\
:x-ldap-basedn=ou=Users,dc=foretell,dc=ca:\
:x-ldap-binddn=cn=ldapadmin,dc=foretell,dc=ca:\
:x-ldap-bindpw=XXXXXX:\
:x-ldap-uscope=onelevel:\
:x-ldap-noreferrals:\
:x-ldap-filter=(&(objectclass=posixAccount)(uid=%u)):\
:x-ldap-gscope=base:
# :x-ldap-groupdn=ou=Users,dc=foretell,dc=ca:\
# :x-ldap-groupfilter=(|(&(objectClass=posixGroup)(memberUid=%u
(&(objectClass=groupOfUniqueNames)(uniqueMember=%d))):
HTH,
Vijay
--
Vijay Sankar
ForeTell Technologies Limited
59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6
Phone: +1 (204) 885-9535, E-Mail: [EMAIL PROTECTED]
