Re: OpenLDAP on Debian 11: missing TLS ciphers?

30 Jul 2022


      Jochen Keutel wrote:
...
Hello,
  we installed the standard OpenLDAP package on Debian 11. Checking the TLS ciphers offered by the server we could see that all six Camellia ciphers are gone
(128 and 256, for TLS 1.0, 1.1, 1.2) compared with the standard OpenLDAP package on Debian 9.
Is this special to the Debian package? Or: Has Gnutls changed something?
Sounds like a question for Debian or Gnutls communities.
...
We did run into this issue because some special devices (e.G. Cisco Prime Collaboration Assurance) cannot connect to the new OpenLDAP server. The server logfile
states: TLS handshake: negotiation failure. It's not yet clear whether they really can "speak" only Camellia ...
Regards
Jochen.
-- 
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: OpenLDAP on Debian 11: missing TLS ciphers?