Hi Dieter, I already have the certificates and here is my ldap.conf :
*TLS_REQCERT demand* *TLS_CACERT /etc/ssl/certs/ca-cert.pem*
With these settings, it's working fine. As I already mentioned, ldapsearch command runs fine with *"ldaps" url* and also with *"ldap" url WITH "-ZZ" option*.
I think that indicates that TLS is enabled on the server.
Is there any difference in behavior when slapd used libgnutls and when it uses libssl ? Or they both serve the same purpose (this was my idea till now)?
Does apache expect slapd to use libssl and not libgnutls ?
Regards Asimananda
On Thu, Sep 17, 2009 at 4:53 PM, Dieter Kluenter dieter@dkluenter.dewrote:
Asimananda Mohanty asimananda.mohanty@gmail.com writes:
Hi Dieter,
Does that mean that my openLDAP has been configured correctly so as to be
used with the
required applications as I described in my previous mails today? Or do I
need to do
something else for the same?
You have to create certificates of course and configure slapd to read this certificates and listen on a secure port. http://www.openldap.org/doc/admin24/tls.html
-Dieter
Dieter Klünter | Systemberatung http://dkluenter.de GPG Key ID:8EF7B6C6 53°37'09,95"N 10°08'02,42"E