So I've set up a openldap on centos 6, and it works but I have yet to get it successfully login over the SSL/TLS port 636
running this command:
Code:
ldapsearch -d1 -x -LLL -b cn=root -D "cn=Manager,dc=example,dc=lab,dc=net" -H "ldaps://localhost:636" -W cn=config
it returns a connect success
but returns this error about the cert,
Code:
TLS: error: connect - force handshake failure: errno 22 - moznss error -8172
TLS: can't connect: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user..
So it seems to be finding the cert, I've double checked all the perms and played around with those for a bit, but no matter what method it doesn't seem to like a self signed cert.
I followed this to setup the cert and the dirs.
http://www.server-world.info/en/note?os=CentOS_6&p=ssl