Oh sure, just the way it was worded I wasn't sure if you were seeing successful SSL connections or just "lots of SSL traffic", which can still be handshake failures.
Can you successfully perform ldapsearches from serverb to serverc over 636?
On Sun, May 4, 2014 at 10:33 AM, Graham Leggett <minfrin@xxxxxxxx> wrote:
On 04 May 2014, at 7:26 PM, Dustin Rice <dustin@xxxxxxx> wrote:My guess would be it's failing to validate the SSL certificate. Are you using a self-signed cert? If so, you'll need to import that CA cert across all of your servers.As I said below, ssldump reveals that the servers are talking successfully to one another, revealing a completely successful SSL handshake. Self signed certs are not being used:At the same time, ssldump reveals that serverb.example.com and serverc.example.com are successfully speaking to one another, and have a lot to say - data seems to be constantly flowing between them, but not to any successful end.
Regards,Graham--
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
-- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
