Hi!
I created certs for a CA and a server and the server's keys.
I configured OpenLDAP to use TLS.
Then I connected to the server with # ldapsearch -Z -x -h localhost:666
which works fine.
Security is set to "simple bind=64" in slapd.conf, so no simple bind without TLS (# ldapsearch -x -h localhost:666) is accepted.
"confidentiality required"
So: TLS does work!
When I perform
# openssl s_client -connect localhost:666 -showcerts
I get:
5630:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib_c:226:
[slapd log shows only an accepted connection, that is closed immediately, nothing else.]
Hans
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
