Hi, You can specify the protole to use with -ssl3 or -tls1 otherwise s_client send a ssl v2 client hello. Moreover some debug info with -state or -debug could be usefull to find what happened. ;)
Hope it could help. Fred -----Original Message----- From: [EMAIL PROTECTED] on behalf of Hans Moser Sent: Wed 2/23/2005 11:54 AM To: openssl-users@openssl.org Cc: Subject: s_client handshake failure [auf Viren überprüft] Hi! I created certs for a CA and a server and the server's keys. I configured OpenLDAP to use TLS. Then I connected to the server with # ldapsearch -Z -x -h localhost:666 which works fine. Security is set to "simple bind=64" in slapd.conf, so no simple bind without TLS (# ldapsearch -x -h localhost:666) is accepted. "confidentiality required" So: TLS does work! When I perform # openssl s_client -connect localhost:666 -showcerts I get: 5630:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib_c:226: [slapd log shows only an accepted connection, that is closed immediately, nothing else.] Hans ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
<<winmail.dat>>
