-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Thiagasundaram, PariX P wrote: | When I do a | | ldapsearch -ZZ -x -H ldap://red.ab.com/ -b '' -s base '(objectclass=*)'+ | | | I get the error: | | Ldap_start_tls: Connect error (-11) | Additional info: error:14077410:SSL | routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure | | I am pretty new to Linux and samba. | | What am I missing here?
More of an OpenLDAP or OpenSSL issue actually. But the #1 reason why StartTLS fails in my experience is using a different hostname connection request that the one used when generating the certificate. For example, generating the certificate for foo.plainjoe.org and connecting to localhost.
There's a good link in the OpenLDAP FAQ about this (don't have it handy though).
cheer,s jerry - --------------------------------------------------------------------- Alleviating the pain of Windows(tm) ------- http://www.samba.org GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc "If we're adding to the noise, turn off this song"--Switchfoot (2003) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBLiRrIR7qMdg1EfYRAvqYAKCdTGv/DLpTR0YYiRwM6OV2gV2/tACfb6Sp +1bMWWjG0zkZmG+RrQM43lk= =Ar+3 -----END PGP SIGNATURE----- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
