From: Galen Johnson (gjohnson@trantor.org)
Date: Fri Jul 09 2004 - 21:00:05 EDT
Hey,
Has anyone successfully gotten the native solaris ldap client to use
openldap/tls for user authentication. I was able to make it work but
only by disabling all security on my openldap server. Once I lock down
userPassword so that anonymous has to authenticate it stops working.
I've tried to get the cert.db and key.db setup the way that is
recommended in the documentation (there has to be an easier way the
create those files) but apparently the files that are created by mozilla
are incompatible. It appears to try to by as anonymous according to my
slapd logs. There are many tls error messages in my sun messages file
along the lines of:
nscd[28089]: [ID 293258 user.error] libsldap: Status: 91 Mesg:
openConnection: failed to initialize TLS security (security library: bad
database.)
currently researching this
I tried using the link from the bigadmin site but it would appear that
under solaris 9 disabling ldapcfg_mgr is a bad thing. I also thought
that Sun had fixed the problem with attaching to ou=people by default.
The man page and docs I've found have been only marginally useful (the
ypass site excepted, aside from the fact that it's sol 8 based).
=G=
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:29:03 EDT