LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 05-11-2008, 07:03 AM   #1
kenneho
Member
 
Registered: May 2003
Location: Oslo, Norway
Distribution: Ubuntu, Red Hat Enterprise Linux
Posts: 655

Rep: Reputation: 40
LDAP connection problems after enabling TLS


Hi.


I've just set up an LDAP server, and it was working fine until I enabled SSL/TLS. The LDAP server and my test LDAP client should be set up correctly according to the manual, but I seem to have missed something.

Since enabling TLS I'm no longer allowd to log onto my LDAP client. The error messeage says "Connection closed by 127.0.0.1".

However, when issuing the command "ldapsearch -x -H 'ldaps://<ldap-server>'" the query is successful.

I've installed a CA signed server certificate on the LDAP server, and installed the CA certificate on the LDAP client.

As I'm quite new to LDAP I could use som advice on how to debug this. Thanks in advance.
 
Old 05-11-2008, 08:00 AM   #2
datopdog
Member
 
Registered: Feb 2008
Location: JHB South Africa
Distribution: Centos, Kubuntu, Cross LFS, OpenSolaris
Posts: 806

Rep: Reputation: 41
The last time i checked openldap was very funny when using self signed certificates just could not get it to work.
 
Old 05-13-2008, 04:25 AM   #3
kenneho
Member
 
Registered: May 2003
Location: Oslo, Norway
Distribution: Ubuntu, Red Hat Enterprise Linux
Posts: 655

Original Poster
Rep: Reputation: 40
Quote:
Originally Posted by datopdog View Post
The last time i checked openldap was very funny when using self signed certificates just could not get it to work.
Actually, the (server) certificate were signed by our local CA. :/
 
Old 05-13-2008, 06:04 AM   #4
kenneho
Member
 
Registered: May 2003
Location: Oslo, Norway
Distribution: Ubuntu, Red Hat Enterprise Linux
Posts: 655

Original Poster
Rep: Reputation: 40
Solved

Turns out that I'd used the LDAP server's ip-address instead of it's FQDN when configuring the client. This is apperantly not correct according to http://www.rfc-editor.org/rfc/rfc2830.txt

So the solution was simply to issue "authconfig-tui", and replace the LDAP server's IP address with it's FQDN.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
TLS in phpLDAPadmin can not connect to LDAP server. nui Linux - Software 0 12-28-2006 08:22 PM
Ldap replication using TLS/SSL jitender.rajpal Linux - Networking 0 10-18-2006 07:59 AM
Enabling LDAP auth for Apache 2.0.55 HSukirman Linux - Software 3 06-07-2006 03:56 AM
password change over LDAP works only if TLS is disabled cyrilrip Linux - General 2 06-02-2005 01:26 AM
LDAP TLS lockups blueplazma Linux - Software 2 04-23-2005 01:48 PM


All times are GMT -5. The time now is 07:13 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration