First let me ask for your forgiveness, I am a perl newbie.
We have a little perl script that is currently doing cleartext
authentication against Oracle Internet Directory 10G that we've revised
to use LDAPS and have the following in our NET::LDAP component:
verify => 'require', cafile => './OIDcertificate.pem'
The authentication is successful, but the part in the Wireshark packet
scan where the "Certificate, Server Hello Done" is not there. It would
look like this:
- Certificate, Server Hello Done
Secure Socket Layer
Handshake Protocol: Certificate
Certificates
(here's where the certificate(s) are seen
When other products pointed to our Oracle Internet Directory (which are
also doing secure ldap) connect, the "Certificate, Server Hello Done"
component is in the packet scan.
It looks like the verify => require is not happening.
Thoughts / suggestions,
Thanks,
tBM
