Re: Self-signed server cert within our corp = failure
Sankhadip Sengupta wrote:
Hi,
You need to find out where your ldap.conf file is and add an entry to that
Half right.
TLSREQCERT allow
That's a bad idea.
Read the ldap.conf(5) manpage, and add the TLS_CACERT setting.
Quoting Quanah Gibson-Mount<quanah(a)zimbra.com>:
> --On Thursday, January 22, 2009 2:20 PM -0500 Jeff Blaine
> <jblaine(a)kickflop.net> wrote:
>
>> OpenLDAP 2.4.11 client
>>
>> How do I subvert this bogusness? The cert is legit.
> Provide the CA.
>
> --Quanah
>
>
> --
>
> Quanah Gibson-Mount
> Principal Software Engineer
> Zimbra, Inc
> --------------------
> Zimbra :: the leader in open source messaging and collaboration
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/