I want to use two servers with multi-master replication behind a common DNS name (let's call it ldap.foo.net) with two IPs, balancing with round-robin. I plan to use only LDAPS.
I have one server installed, with a certificate issued to his own FQDN. I can use ldapsearch over TLS with the -ZZZ parameter without problems.
I have installed another certificate in the same server, issued to the common DNS name ldap.foo.net . I can ping my server using ldap.foo.net. But when I try to use 'ldapsearch' with -h ldap.foo.net, it errors with:
ldap_start_tls: Connect error (-11)
additional info: TLS error -8157:Certificate extension not found.
- Does anyone knows why this happens?
- Can I install and use several certificates to one DS?
_______________________________________________
389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
