[Samba] smbldap_open_connection(623)
Gerald (Jerry) Carter
jerry at samba.org
Thu Aug 26 17:56:59 GMT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thiagasundaram, PariX P wrote:
| When I do a
|
| ldapsearch -ZZ -x -H ldap://red.ab.com/ -b '' -s base '(objectclass=*)'+
|
|
| I get the error:
|
| Ldap_start_tls: Connect error (-11)
| Additional info: error:14077410:SSL
| routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
|
| I am pretty new to Linux and samba.
|
| What am I missing here?
More of an OpenLDAP or OpenSSL issue actually. But the #1
reason why StartTLS fails in my experience is using a
different hostname connection request that the one used when
generating the certificate. For example, generating the
certificate for foo.plainjoe.org and connecting to localhost.
There's a good link in the OpenLDAP FAQ about this (don't have
it handy though).
cheer,s jerry
- ---------------------------------------------------------------------
Alleviating the pain of Windows(tm) ------- http://www.samba.org
GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc
"If we're adding to the noise, turn off this song"--Switchfoot (2003)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFBLiRrIR7qMdg1EfYRAvqYAKCdTGv/DLpTR0YYiRwM6OV2gV2/tACfb6Sp
+1bMWWjG0zkZmG+RrQM43lk=
=Ar+3
-----END PGP SIGNATURE-----
More information about the samba
mailing list