From: MBuselli@cccis.com
Date: Thu Mar 03 2005 - 02:06:48 EST
Hello,
I cannot get nss_ldap or ldapclient (Solaris 10 client, native commands) to
work right when the LDAP server uses TLS and a CA-signed server certificate
(works fine if I use a self-signed server cert). Has anyone encountered
this problem and/or know how to fix it? The error I get when using a
CA-signed cert is:
Mar 3 00:20:45 conjunct ldapsearch[22589]: [ID 605618 user.error]
libldap: CERT_VerifyCertName: cert server name 'cccis certificate
authority' does not match 'cccqadc-1.qawin.cccis.com': SSL connection
denied
Both certificates were added to the cert7.db files during testing. I used
both Windows (W2K3 Active Directory) and Linux (OpenLDAP) for the servers
during testing. Non-Solaris clients (such as OpenLDAP ldapsearch and the
LDAP Browser-Editor by Jarek Gawor) work fine with either kind of
certificate.
Thank you!
-- Michael H. Buselli mbuselli@cccis.com _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:30:17 EDT