Re: Openldap and sssd: getting slapd to do TLS negotiation or getting sssd to NOT do TLS negotiation

Quanah Gibson-Mount Fri, 29 Sep 2017 10:30:08 -0700

--On Friday, September 29, 2017 2:17 PM -0400 Robert Heller<[email protected]> wrote:

    Signature Algorithm: sha1WithRSAEncryption

The above is probably your problem. I believe MozNSS will no longer acceptSHA1 certs. This was in the link I sent you yesterday. Generate a moresecure cert (I.e., SHA256 or higher).


--Quanah

--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>

Re: Openldap and sssd: getting slapd to do TLS negotiation or getting sssd to NOT do TLS negotiation

Reply via email to