Frederic Van Espen wrote: > When receiving a mail we lookup in ldap where the mail needs to go. > This works fine for a simple unsecured ldap connection, but when I try to > enable > start_tls I consistently receive this error when receiving a mail: > warning: dict_ldap_set_tls_options: Unable to allocate new TLS context > -1: Can't contact LDAP server
Likely the server cert cannot be validated. > However, it does seem to work fine when I manually run it with > postmap on the commandline. In that case I can see the connection to > the LDAP server > being set up with wireshark and the switching to STARTTLS. It seems > only the postfix process itself cannot connect. I tried the same thing > while using the postfix user to make sure it's not a permission issue > but postmap also works fine in that case. Wild guess: You might need to add your CA cert... > tls_ca_cert_file = /etc/postfix/escaux-ict-ca.pem ...to the chroot directory. Ciao, Michael.
smime.p7s
Description: S/MIME Cryptographic Signature
