openldap over tls

achoos13 · 05-08-2012, 12:53 AM

Hey Guys,
I am new to openldap. I am trying to setup openldap2.4.23 over tls on rhel6 . generating a self signed cert on the ldap server and importing that into the ldap client so it will use ldap .From server side ldap is working fine. in server idap user can be logged in using su. but its failing continuously in client side.Will anyone help me in the implementation client side.

acid_kewpie · 05-08-2012, 02:14 AM

you could start by at least telling us what "failing" means here. What do the logs say on the client AND server sides? How does TLS come into the equations? Is this straight TLS on 636 or STARTTLS on 389? does it work without it?

achoos13 · 05-08-2012, 06:20 AM

error i got while trying to ldapsearch
ldaperr2string ldap_start_tls: connect error(-11)

ldapsearch and ldapwhoami are woking fine both in server and client without TLS.But even then login using ldap in client was not working.

acid_kewpie · 05-08-2012, 06:23 AM

so what command are you getting that from? what's the entire command with debugging enabled? Please try to provide information without drip feeding it... It makes things very slow and frustrating...

achoos13 · 05-08-2012, 07:28 AM

I am working with openldap for the first time> so didnt get into the debug Part.

i got this error when ldapserach

ldapsearch -d -1 -LLL -ZZ

AND i followed this document mainly

http://www.server-world.info/en/note?os=CentOS_6&p=ldap

acid_kewpie · 05-08-2012, 07:38 AM

just read the ldapsearch manpage and enable debugging accordingly with the -d option.