--On Thursday, June 23, 2022 4:47 AM -0700 radiatejava <[email protected]> wrote:
Anyone of these issues could be responsible? Just checking
No. I would also note that while you said the CN in your cert was "test.ldap.com" you didn't mention what any subjectAltName values in your cert would be. You've also not noted what TLS_REQCERT values are set nor what TLS_REQSAN options have been configured. There are any number of factors that may have disabled hostname checks on the client side that are being picked up by your application (A global ldap.conf, a user one, etc).
--Quanah
