Fedora 16 ldapsearch client via ssl won't work
I have installed Fedora 16 and yummed openldap client (ldapsearch version 2.4.26). The ldapsearch won't work for ssl, and I'm thinking that I must be missing something.
ldapsearch -x -H ldap://xxxx:389 -b 'ou=xxx,dc=xxx,dc=gxxxov' "(& (givenName=firstname)(sn=lastname))"
ldapsearch -x -H ldaps://xxxx:636 -b 'ou=xxx,dc=xxx,dc=gxxxov' "(& (givenName=firstname)(sn=lastname))"
Returns ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
I have an older server running Fedora 11 (ldapsearch version 2.4.15) where this works fine.
The directory server has a trusted cert, and it is not a firewall problem. Further, the newer server is running a java process (Liferay portal) that is authenticating to this very same directory over ssl.
SELinux is disabled.
What am I missing?