On 2009-08-18 09:19 PDT, NataliaB wrote: > Hi, > Could somebody give me an advice on how to debug a problem with SSL > connection? > A customer uses AD as an LDAP server. The server listens on port 389 > without SSL and 636 with SSL. Our client software successfully > connects to the server on port 389, but it fails to connect on 636. > Client libraries are built with DS 6.3. > > I tried a couple of ways to connect to the server, but all of them end > up with an error -12263 (SSL_ERROR_RX_RECORD_TOO_LONG SSL received a > record that exceeded the maximum permissible length)
> Wireshark network protocol analyzer displays the following > communication: > The client contacts the server and says "Client Hello". > The Server responds with "Server Hello, Certificate, Certificate > Request, Server Hello Done" > Then the client responds with a "Fatal, Record Overflow" error > > Is it something wrong with the certificate? Or the way I initialize > and connect to the server ? server problem. Config workarounds exist. http://blogs.technet.com/askds/archive/2008/10/27/ssl-tls-record-fragmentation-support.aspx _______________________________________________ dev-tech-ldap mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-ldap
