On Sat, May 21, 2011 at 12:04 PM, David Dumortier <[email protected]> wrote: >> >> >> >> I suspect you are running ldap:// on port 636. >> > >> > ldapsearch -W -H ldap://myip:636/ >> > ldap_result: Can't contact LDAP server (-1) >> > >> >> No, -H ldaps://myip:636/ (to SSL/ldaps). > > Tried it with same result :-( >
You're really using a Certificate file (and not a CSR)? Ldap client will validade the server certificate, you should especify TLS_CACERT /to/file or TLS_REQCERT never on /etc/ldap/ldap.conf -- Reinaldo de Carvalho http://korreio.sf.net http://python-cyrus.sf.net "While not fully understand a software, don't try to adapt this software to the way you work, but rather yourself to the way the software works" (myself)
