Hi list,
i just configured my LDAP server to use client certificates (SASL EXTERNAL) for
authentication. Works from my Laptop very will with tools
like ldapsearch work perfectly. The only thing luma tells me is:
18:56:23 Certificate error. Reason:
Could not set client certificate and certificate keyfile.
18:56:23 LDAP bind operation not successful. Reason:
{'desc': "Can't contact LDAP server"}
On the LDAP server i can only the a connect but nothing more:
Aug 24 16:57:34 nagios1 slapd[10840]: conn=553 fd=22 ACCEPT from
IP=xx.xx.x.xx:40810 (IP=0.0.0.0:389)
Aug 24 16:57:34 nagios1 slapd[10840]: conn=553 op=1 UNBIND
Aug 24 16:57:34 nagios1 slapd[10840]: conn=553 fd=22 closed
Here's my ~/.ldaprc
TLS_CACERT /etc/openldap/ssl/ca-bundle.crt
TLS_CERT /etc/openldap/ssl/admin.cert.pem
TLS_KEY /etc/openldap/ssl/admin.key.pem
TLS_REQCERT demand
SASL_MECH EXTERNAL
So why isn't this working. I'm really running out of ideas.
Regards
Daniel
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
|
