Sorry, I think your ldap server is NOT running TLS.
I just try a s_client on an ldap server without ssl and here is the result: [EMAIL PROTECTED] donnatfr]# openssl s_client -connect 192.168.0.70:389 -ssl3 -debug CONNECTED(00000003) write to 0814B438 [081551F0] (88 bytes => 88 (0x58)) 0000 - 16 03 00 00 53 01 00 00-4f 03 00 42 1e 27 c0 19 ....S...O..B.'.. 0010 - 6f b4 bb 2c 1b 2f 48 87-c3 7a ad 8c 5b 43 56 95 o..,./H..z..[CV. 0020 - a5 88 97 05 90 e7 d3 75-2c 37 1b 00 00 28 00 16 .......u,7...(.. 0030 - 00 13 00 0a 00 66 00 05-00 04 00 65 00 64 00 63 .....f.....e.d.c 0040 - 00 62 00 61 00 60 00 15-00 12 00 09 00 14 00 11 .b.a.`.......... 0050 - 00 08 00 06 00 03 01 ....... 0058 - <SPACES/NULS> read from 0814B438 [081509E0] (5 bytes => 0 (0x0)) 4889:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:528: The server dose not respond to the client hello message and close the connection. Fred -----Original Message----- From: [EMAIL PROTECTED] on behalf of Hans Moser Sent: Wed 2/23/2005 4:14 PM To: openssl-users@openssl.org Cc: Subject: Re: s_client handshake failure [auf Viren überprüft] [EMAIL PROTECTED] schrieb das Folgende am 23.02.2005 12:09: > Hi, > > You can specify the protole to use with -ssl3 or -tls1 otherwise s_client > send a ssl v2 client hello. Moreover some debug info with -state or -debug > could be usefull to find what happened. ;) # openssl s_client -connect localhost:666 -showcerts -debug CONNECTED(000000003) write to 080ABC00 [080AC2D8] (142 bytes => 142 (0x8E)) .... 9 Lines of HEX read from 080ABC00 [080B1838] (7 bytes => 0 (0x0)) 4641:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib_c:226: with "-tls1" it changes only a bit into 4690:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s3_pkt.c:539: Hans ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
<<winmail.dat>>
