Hello,
I'm having a heckuva time trying to get my client program to connect
to an iPlanet Directory Server 5.0 running on my local box, and would
really appreciate some help.
I got the 14-day temp Certificate from Verisign yesterday and have
every reason to believe it's installed correctly--I followed the
iPlanet docs and the server's not complaining.
But my client program is returning -1 every time I try to execute
ldapssl_client_init(). I've been passing in the path to the cert7.db
file used by Netscape Communicator v4.08. So my actual .c code is:
rc = ldapssl_client_init(
"C:\\Progra~1\\Netscape\\Users\\default\\cert7.db", NULL );
I also get -1 returned if I copy the cert7.db file to the current
working directory and send just the filename "cert7.db" in the
ldap_ssl_client_init() function.
Browsing the list of certificates in Communicator, sure as heck
there's one for Verisign temp CA (the cert I downloaded from Verisign)
with the following data:
This Certificate belongs to:
For VeriSign authorized testing only. No
assurances (C)VS1997
www.verisign.com/repository/TestCPS
Incorp. By Ref. Liab. LTD.
VeriSign, Inc
This Certificate was issued by:
For VeriSign authorized testing
only. No
assurances (C)VS1997
www.verisign.com/repository/TestCPS
Incorp. By Ref. Liab. LTD.
VeriSign, Inc
Serial Number: 52:A9:F4:24:DA:67:4C:9D:AF:4F:53:78:52:AB:EF:6E
This Certificate is valid from Sat Jun 06, 1998 to Tue Jun 06, 2006
Certificate Fingerprint:
40:06:53:11:FD:B3:3E:88:0A:6F:7D:D1:4E:22:91:87
So, according to the docs, this *should* be working.
Any ideas? Is there another way to set up the certificate database
file that needs to get specified in this function? As I understand,
ldapssl_client_init() doesn't even talk to the server--yet. So I don't
see how my server setup could have anything to do with this problem
anyway.
Any help greatly appreciated,
Scott
