I'm attempting to use SSL replication between two Netscape 4.12 directories (on Solaris 8). We have imported the individual server certificates as well as the CA certificate and are attempting to establish a Server initiated replication. We are using the Entrust PKI suite to provide certificates. On the consumer server, encryption has been turned on (Enable SSL) as well as "allow client authentication". Under the replication agreements a supplier DN and password has been established. On the supplier server, the SIR agreement has been set up checking "Using SSL replication" utilizing simple authentication (providing the DN and password established on the consumer). Replication seems to be working but when we wanted to verify that the messages are encrypted (via a sniffer package) it was noted that the messages are in fact not encrypted. Does anyone have an idea as to what I may be doing wrong? Note, I saw some message of the nature that SSL replication in 4.12 may have problems but have not been able to verify. Anyone know of such problems and are there patches to fix them? Thanks.
