Did you try turning on logging on the server to see what sendmail is trying to do? Did you try using ldapsearch to see if you can simulate what sendmail is doing? Roy
________________________________
From: openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org [mailto:openldap-technical-bounces+roy.marantz=deshaw.com@openldap.org] On Behalf Of farhan ahmed Sent: Monday, March 17, 2008 9:02 AM To: openldap-technical@openldap.org Subject: RE: Solaris 10 Native LDAP Client TLS
Hi Guys,
I have done it for Solaris 10 but now I am facing problem in Solaris 9. Please help me
Still no luck with LDAP native client on Solaris 9. I am getting following message
Mar 16 02:02:59 web04 sendmail[3700]: [ID 293258 mail.warning] libsldap: Status: 81 Mesg: openConnection: simple bind failed - Can't contact LDAP server
But when I run /usr/lib/ldap/ldap_cachemgr -g, I get following which shows there is no problem
cachemgr configuration: server debug level 0 server log file "/var/ldap/cachemgr.log" number of calls to ldapcachemgr 19
cachemgr cache data statistics: Configuration refresh information: Previous refresh time: 2008/03/17 23:55:23 Next refresh time: 2008/03/18 00:55:23 Server information: Previous refresh time: 2008/03/17 23:55:23 Next refresh time: 2008/03/18 00:05:23 server: 203.221.221.83, status: UP Cache data information: Maximum cache entries: 256 Number of cache entries: 0
ldapclient -vvv manual -a defaultServerList=10.10.10.10 -a defaultSearchBase=dc=test,dc=com -a authenticationMethod=tls:simple -a credentialLevel=proxy -a proxyDN=cn=proxyagent,ou=profile,dc=test,dc=com -a proxyPassword=test
Note: Same command works for Solaris 10
I really want to use LDAP native client rather than openldap client which is hassle to install gcc padle pam_ldap etc on 50 servers.
Please help me guys.
Thanks,
Farhan
________________________________
From: farhhanahmed@hotmail.com To: openldap-technical@openldap.org Subject: Solaris 10 Native LDAP Client TLS Date: Fri, 14 Mar 2008 11:55:59 +0000 Hello Guys, I am having some issues to configure LDAP Native client with TLS. Please help me to sort out this issue LDAP Server: Linux (OpenLdap), LDAP Client: Solaris 10 (Native Client) When I run following command to test, it works fine, ldapsearch -v -h test -p 636 -Z -P /var/ldap/cert8.db -b "dc=test,dc=com" -s base "objectclass=*" ldapsearch: started Fri Mar 14 18:11:57 2008 ldap_init( test, 636 ) filter pattern: objectclass=* returning: ALL filter is: (objectclass=*) version: 1 dn: dc=test,dc=com objectClass: dcObject objectClass: organization o: test.com web site dc: test 1 matches But When I run ldapclient command to initialize ldapclient, it doesn't work, please guide me where I am doing wrong ldapclient -v manual -a defaultServerList=10.10.10.10 -a defaultSearchBase=dc=test,dc=com -a authenticationMethod=tls:simple -a serviceAuthenticationMethod=pam_ldap:tls:simple -a serviceAuthenticationMethod=keyserv:tls:simple -a serviceAuthenticationMethod=passwd-cmd:tls:simple -a credentialLevel=proxy -a proxyDN=cn=Manager,ou=People,dc=test,dc=com -a proxyPassword=passwd After that when I run ldaplist command, I get following in /var/adm/messages Mar 14 18:15:16 subx05-t1 nfs4cbd[1638]: [ID 293258 daemon.warning] libsldap: Status: 91 Mesg: openConnection: failed to initialize TLS security (security library: bad database.) Please help me guys :) I know I am very near to get it working Thanks, Farhan ________________________________
at CarPoint.com.au It's simple! Sell your car for just $30 http://a.ninemsn.com.au/b.aspx?URL=http://secure-au.imrworldwide.com/cg i-bin/a/ci_450304/et_2/cg_801459/pi_1004813/ai_859641&_t=762955845&_r=ti g_OCT07&_m=EXT
________________________________
at CarPoint.com.au It's simple! Sell your car for just $30 http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fsecure%2Dau%2Eimrworldw ide%2Ecom%2Fcgi%2Dbin%2Fa%2Fci%5F450304%2Fet%5F2%2Fcg%5F801459%2Fpi%5F10 04813%2Fai%5F859641&_t=762955845&_r=tig_OCT07&_m=EXT