On 14.04.2013 21:38, Chris Jacobs wrote:
In openldap cmd ldapsearch, there is no option to specify the cert path. It picks the cert files/dir from the /etc/openldap/ldap.conf
CJ: I was mistaken. I thought there was.
A matter of definition, I suppose...
You can add them as environment variables, and that can be done on the commandline. The man ldap.conf page says:
Environmental variables may also be used to augment the file based defaults. The name of the variable is the option name with an added prefix of LDAP. For example, to define BASE via the environment, set the variable LDAPBASE to the desired value.
So: LDAPTLS_CACERTDIR /path/to/dir ldapsearch ....