Hi all, I need to connect to an LDAP server with a self-signed cert. I cannot get s_client to verify OK.. I have gathered the server cert by running s_client and then copying the server cert out of the output from s_client. Then I run s_client with the -CAfile option pointed to that file and it still does not work. I've even run strace to confirm that the cert is in fact read.
Can one use a server's cert in this way? If not, what do I need to do? Just in case I've failed to be clear: s_client -host hostname -port 636 > cert.pem # edit cert.pem so it only contains the cert s_client -host hostname -port 636 -CAfile ./cert.pem No luck... Thanks! -Dylan ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
