On 28 January 2012 21:11, Rich Megginson richm@stanfordalumni.org wrote:
On Sat, Jan 28, 2012 at 4:38 AM, Iain Georgeson iain.georgeson@kaust.edu.sa wrote:
I'm trying to set up syncrepl in my LDAP infrastructure. The logs on my consumer show that syncrepl is failing to negotiate TLS when connecting to the provider. Other LDAP commands such as ldapsearch and sssd show no problem connecting using the same TLS configuration.
There were a few moznss TLS issues fixed between 2.4.23-15 and 2.4.23-20 in RHEL 6.2 (back ported from openldap upstream 2.4.24-2.4.28)
I don't know how far behind SL is compared to RHEL but if you can, try with openldap 2.4.23-20
Many thanks. I bumped slapd on the consumer to 2.4.23-20 from SL6.2 beta, and TLS succeeds now.
Iain.