On Sep 3, 2011, at 6:00 PM, Nate Marks wrote: > [root@ldap01 cacerts]# openssl s_client -CAfile /etc/pki/tls/certs/cacert.pem > -connect 10.60.1.57:389 > CONNECTED(00000003) > 4392:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake > failure:s23_lib.c:188: > [root@ldap01 cacerts]#
To use tls on the standard port you would need to submit the option -starttls xxx to openssl. Where xxx is the protocol. But ldap as protocol is not supported. Even if it would, you could not type in anything useful. -- Marco
