14 Jun
2011
14 Jun
'11
8:40 a.m.
Hello Rich,
responses inline..
On 06/13/2011 10:30 AM, Rich Megginson wrote: [...]
LDAPTLS_REQCERT=never ldapsearch -x -d 1 -ZZ -H ldap://yourhost:yourport -s base -b "" > output.log 2>&1
I executed the command.. and it worked. I attach the output. Any help on how can I duplicate this behavior in my application ?
More specifically. When shall I set the option:
int opt_val = LDAP_OPT_X_TLS_ALLOW; ldap_set_option(ld, LDAP_OPT_X_TLS_REQUIRE_CERT, &opt_val)
Possibilities: - At startup with ld == NULL ? - Right after ldap_initialize(&ld, url) - i.e. before ldap_start_tls() ? - Elsewhere ?
Last but not least: shall I use ALLOW, TRY, or NEVER as the option for REQUIRE_CERT ?
Cheers, Max
--
http://member.acm.org/~openca/
Massimiliano Pala, Ph.D.
Director, OpenCA Labs
Professor, NYU Poly