Hi Daniel, On Thu, Sep 11, 2014 at 8:57 PM, Daniel Stutz <dst...@use-strict.net> wrote:
> Did you try the ‚cafile‘ option of start_tls? > http://search.cpan.org/~marschap/perl-ldap/lib/Net/LDAP.pod#start_tls > > Yes, I tried that as well, but it did not work either. But apparently the module is smart enough to look into the default paths for openssl and if the cert is in there, you need nothing else but verify => 'require' when using the start_tls method. I tried removing the cert from there and the script croaked inmediately. And wireshark showed that everything was nicely encrypted. Thanks! -- groet, natxo
