OpenLDAP with StartTLS broken on Debian Lennny

Posted by mr.zog on Server Fault See other posts from Server Fault or by mr.zog
Published on 2010-06-06T16:31:23Z Indexed on 2010/06/06 16:42 UTC
Read the original article Hit count: 316

Filed under:
|
|

I'm trying to get OpenLDAP on Lenny to work with StartTLS. I have a Fedora 13 machine which I'm using as a client for testing. So far the Fedora client is ignoring the 'host' directive in /etc/ldap.conf when I try to connect using ldapsearch. The client wants to connect to 127.0.0.1:389 even if I specify -H ldaps://server.name on when using ldapsearch. /etc/ldap.conf on the client machine is in mode 444.

But even when I try connecting locally from an ssh session, I see errors like this: ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)

Someone hit me with a cluebat, plz.

Update: you must use ~/.ldaprc for settings such as 'host'.

© Server Fault or respective owner

Related posts about openldap

Related posts about lenny