Ognen Duzlevski <[email protected]> writes: > Hello, > > I have a Debian 6.0.5 server running OpenLDAP which appears to be linked > against GnuTLS. I have generated a self-signed certificate using certtool > and have successfully used it to authenticate Debian client machines > against the OpenLDAP ldaps:// server in question. > > However, when I try to do the same on a CentOS 6 client, I am unable to do > so. > > On the CentOS client, if I try to run ldapsearch against the server, I get > the following: > > ldap_start_tls: Can't contact LDAP server (-1) > additional info: TLS error -8101:Certificate type not approved for > application.
Maybe you need to answer one of these with 'y' when you generate the cert: Is this also a TLS web server certificate? (y/N): Will the certificate be used for signing (required for TLS)? (y/N): Will the certificate be used for encryption (not required for TLS)? (y/N): /Simon _______________________________________________ Help-gnutls mailing list [email protected] https://lists.gnu.org/mailman/listinfo/help-gnutls
