On 10/17/07, Alexander Fortin <alieno@xxxxxxxxx> wrote: > > <IfModule util_ldap.c> > LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem > LDAPTrustedMode SSL > LDAPVerifyServerCert off > </IfModule> Wireshark will format the initial stages of the handshake pretty nicely, you might see something fishy or a plaintext SSL Alert. Can openssl handshake w/ the ldap server? Is its cert issued by that cacert.pem? Can openssl validate the cert chain when you give it that same cacert.pem? -- Eric Covener covener@xxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|