I'm also experiencing this same issue. My /etc/ssl/certs/cacert.pem is 0644 and owned by root:root on both my ldap server. Also it seems that my ldap servers are able to sync with each other over TLS/SSL but ldapsearch doesn't seem to work for unless I put "TLS_REQCERT allow" into ~/.ldaprc. I don't know how to set this globally since /etc/ldap.conf and /etc/ldap/ldap.conf seem to ignore this value. Also I don't know how I can get my ubuntu servers to use ldap for authentication over TLS/SSL until this issue is resolved.
-- ldapsearch ignores TLS_CACERT from /etc/ldap/ldap.conf but gladly reads ~/.ldapcert.pem https://bugs.launchpad.net/bugs/618715 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
