Windl, Ulrich wrote:
Hi!
AFAIK ldapsearch does not use ldap.conf
(and it seems you cannot specify certificates to authenticate as client using ldapsearch).
Wrong. Re-read the ldap.conf(5) manpage. You must use an ldaprc file, not ldap.conf.
Maybe you need to write a tool (or extend ldapsearch to accept additional options for certificates)
Kind regards, Ulrich
-----Original Message----- From: Eric M em.job35@gmail.com Sent: Friday, December 27, 2024 3:17 PM To: openldap-technical@openldap.org Subject: [EXT] Re: LDAP Tools don't use LDAP.conf
I just want to perform a ldapsearch search with TLS mutual authentication. My backend require mutual authentication because the parameter TLS_REQCERT is demanded. On my client server, i configured my LDAP.conf with his TLS parameters. An OpenSSL test is ok when I check and give all the certificate parameters in command line. But, with my search with ldapsearch, i notice an error « peer did not return certificate » with LDAP.conf configured.