TLS 1.2 Issue with openldap 2.4.36 built on NSS 3.15.3

Hi, We have an application which uses pam_ldap.so module to connect to LDAP server. Our application( i.e. client ) uses openldap(2.4.36) which is built against mozilla NSS library(3.15.3) and as per NSS mozilla official website, it supports TLSv1.2 protocol/ciphers. Our application run on

Re: TLS 1.2 Issue with openldap 2.4.36 built on NSS 3.15.3

On Tue, Nov 26, 2013 at 01:14:50PM +, Sameer Stephen wrote: Hi, We have an application which uses pam_ldap.so module to connect to LDAP server. Our application( i.e. client ) uses openldap(2.4.36) which is built against mozilla NSS library(3.15.3) and as per NSS mozilla official

Re: TLS 1.2 Issue with openldap 2.4.36 built on NSS 3.15.3

On 2013-11-26 13:37, Kurt Roeckx wrote: On Tue, Nov 26, 2013 at 01:14:50PM +, Sameer Stephen wrote: Hi, We have an application which uses pam_ldap.so module to connect to LDAP server. Our application( i.e. client ) uses openldap(2.4.36) which is built against mozilla NSS library(3.15.3)

Re: TLS 1.2 Issue with openldap 2.4.36 built on NSS 3.15.3

Hi, Thanks for the information. I checked the ciphers supported by openldap server and got following list(slapd.conf : TLSCipherSuite TLSv1.2): == openssl ciphers -v 'TLSv1.2' ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(256) Mac=AEAD ECDHE-ECDSA-AES256-GCM-SHA384 TLSv1.2