Re: [exim] Exim 4.82 LDAPS problems

Top Page
Delete this message
Reply to this message
Author: Heiko Schlichting
Date:  
To: exim-users
Subject: Re: [exim] Exim 4.82 LDAPS problems
Todd Lyons wrote:
> >     ldap_initialize with URL ldaps://ldap.example.org:636/
> >     initialized for LDAP (v3) server ldap.example.org:636
> >     LDAP_OPT_X_TLS_HARD set

>
> The above means that the cert cannot be self-signed. Is that correct
> for your case?


ldap.example.org:636 is self signed and localhost:8636 is not selfsigned.
Usually in ~/.ldaprc

    TLS_REQCERT allow


is set for this exim user.

> > and exim 4.82:
> >
> >     ldap_initialize with URL ldaps://ldap.example.org:636/
> >     initialized for LDAP (v3) server ldap.example.org:636
> >     Require certificate overrides LDAP_OPT_X_TLS option (0)

>
> This line tells me that Exim found the option ldap_require_cert and
> used its value.


ldap_require_cert is not set explicit.

I'll try connecting you on Freenode-IRC or you can try XMPP:
heiko@???

Heiko

Heiko Schlichting                Freie Universität Berlin
heiko.schlichting@???   Zentraleinrichtung für Datenverarbeitung
Telefon +49 30 838-54327         Fabeckstraße 32
Telefax +49 30 838454327         14195 Berlin