Re: Context around DNS resolution

9 Mar 2014


      Joshua Schaeffer wrote:
...
when I runthe following ldapsearch I get an error:
jschaeffer@zipmaster07:~$ ldapsearch -LLL -v -D cn=admin,dc=harmonywave,dc=com
-W -H ldaps://baneling -b uid=jschaeffer,ou=People,dc=harmonywave,dc=com
ldap_initialize( ldaps://baneling:636/??base )
Enter LDAP Password:
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
If I use the FQDN for the URI then everything works fine and I get results.
That's because of the TLS hostname check which checks against the server's
certificate.
=> always use FQDN with TLS
Ciao, Michael.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: Context around DNS resolution