I'm getting further, I went to http://ltb-project.org and downloaded a newer version of openldap. BTW, thank you, it's a nice site.
But when I do a 'ldapsearch -d -1 -x -LLL -ZZ', I'm getting " unsupported extended operation"
Does anybody have a clue?
read1msg: ld 0x22f9b60 0 new referrals read1msg: mark request completed, ld 0x22f9b60 msgid 1 request done: ld 0x22f9b60 msgid 1 res_errno: 2, res_error: <unsupported extended operation>, res_matched: <> ldap_free_request (origid 1, msgid 1) ldap_parse_extended_result ber_scanf fmt ({eAA) ber: ber_dump: buf=0x2303330 ptr=0x2303333 end=0x230335a len=39 0000: 78 25 0a 01 02 04 00 04 1e 75 6e 73 75 70 70 6f x%.......unsuppo 0010: 72 74 65 64 20 65 78 74 65 6e 64 65 64 20 6f 70 rted extended op 0020: 65 72 61 74 69 6f 6e eration ldap_parse_result ber_scanf fmt ({iAA) ber: ber_dump: buf=0x2303330 ptr=0x2303333 end=0x230335a len=39 0000: 78 25 0a 01 02 04 00 04 1e 75 6e 73 75 70 70 6f x%.......unsuppo 0010: 72 74 65 64 20 65 78 74 65 6e 64 65 64 20 6f 70 rted extended op 0020: 65 72 61 74 69 6f 6e eration ber_scanf fmt (}) ber: ber_dump: buf=0x2303330 ptr=0x230335a end=0x230335a len=0
ldap_msgfree ldap_err2string ldap_start_tls: Protocol error (2) additional info: unsupported extended operation ldap_free_connection 1 1 ldap_send_unbind ber_flush2: 7 bytes to sd 3 0000: 30 05 02 01 02 42 00 0....B. ldap_write: want=7, written=7 0000: 30 05 02 01 02 42 00 0....B. ldap_free_connection: actually freed -----Original Message----- From: Quanah Gibson-Mount [mailto:quanah@zimbra.com] Sent: Monday, June 24, 2013 6:30 PM To: Rodney Simioni; openldap-technical@openldap.org Subject: Re: openldap and MozNSS
--On Monday, June 24, 2013 6:01 PM -0400 Rodney Simioni rodney.simioni@verio.net wrote:
Greetings,
I have heard through the grapevine that it is best not to use openldap with MozNSS support for SSL/TLS and to use openssl.
I'm using a Red Hat pkg of openldap with version 2.4.23. How do I know if this version has openssl compiled?
Use the "ldd" command on the binaries to see what it is linked to.
If you are not comfortable with building OpenLDAP yourself, the packages from http://ltb-project.org/wiki/download#openldap are quite nice, and sanely linked to OpenSSL.
--Quanah
--
Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
This email message is intended for the use of the person to whom it has been sent, and may contain information that is confidential or legally protected. If you are not the intended recipient or have received this message in error, you are not authorized to copy, distribute, or otherwise use this message or its attachments. Please notify the sender immediately by return e-mail and permanently delete this message and any attachments. Verio Inc. makes no warranty that this email is error or virus free. Thank you.