Bug#266865: ldap.conf does not support the
TLS_CACERT directive, but .ldaprc does

Hi Sebastien,

On Thu, Aug 19, 2004 at 03:21:08PM +0200, Sebastien Varrette wrote:
> Even if the man page of ldap.conf precise that TLS_CACERT in not a
> user-only directive, it seems that this option is not supported
> when precised in ldap.conf.
> I've done the folowing experience:
> %------------------------------------------------
> [15:12:12]root@smith root# cat /etc/ldap/ldap.conf
> BASE dc=grid5000,dc=net
> URI ldaps://neo
> TLS_CERT /etc/ldap/CA-cert.pem

The option is TLS_CACERT. You write TLS_CERT here...

> Now, if I create a $HOME/.ldaprc file containing
> TLS_CERT /etc/ldap/CA-cert.pem
> everything goes well:
> [15:16:06]root@smith root# cat ~/.ldaprc
> TLS_CACERT /etc/ldap/CA-cert.pem

Note the contradiction...

I never used TLS_CACERT in .ldaprc, I've put it into /etc/ldap/ldap.conf
and if works just fine here.



Attachment: pgp6aNM6Cc2Y7.pgp
Description: PGP signature

debian-openldap mailing list