Hi!
Short news: It seems Apache directory studio needs an update for newer ciphers, but nobody did that so far.
Kind regards, Ulrich Windl
-----Original Message----- From: Nick Milas nick@eurobjects.com Sent: Wednesday, May 21, 2025 11:33 AM To: openldap-technical@openldap.org Subject: [EXT] Re: Cannot connect over TLS/SSL (ldaps) on v2.6.9
On 21/5/2025 11:52 π.μ., Uwe Sauter wrote:
What is the output of your query with "-d -1" added to the command line?
What is the output of
"openssl s_client -connect $SERVER:636"?
Can you query your server when you disable certificate checking in
ldap.conf ("TLS_REQCERT allow")?
Hi Uwe,
After further testing, I found that I can connect over ldaps from other servers (using ldapsearch) successfully, even from my (Windows) workstation with JXplorer, but not from Apache Directory Studio (also on my workstation).
Quite strange. ADS can connect to the old server (which has exactly the same certificate!) without issues.
I'll (try to) troubleshoot that further, but if you have any ideas, they are welcome!
Thanks, Nick