Hi, Can anybody help me out in solving the problem. Thanks
On Mon, Dec 2, 2013 at 8:03 PM, The default queue via RT <r...@openssl.org>wrote: > > Greetings, > > This message has been automatically generated in response to the > creation of a trouble ticket regarding: > "Problem in configuring SSL in OPENLDAP", > a summary of which appears below. > > There is no need to reply to this message right now. Your ticket has been > assigned an ID of [openssl.org #3186]. > > Please include the string: > > [openssl.org #3186] > > in the subject line of all future correspondence about this issue. To do > so, > you may reply to this message. > > Thank you, > r...@openssl.org > > ------------------------------------------------------------------------- > Hi, > > > I am very new to LDAP and SSL. > > I am facing some problem in configuring SSL in openldap through OPENSSL. > > I have installed: > 1. openssl-1.0.0-20.el6_2.5.x86_64 > 2. openldap-servers-2.4.23-26.el6.x86_64 > > I have an LDAP server setup in Redhat and Websphere setup in Server 2008 > mahine. I am able to configure LDAP server with websphere and able to use > WAS through LDAP successfully > The problem now is that I want to configure Custom SSL between LDAP server > and WAS, for which i am trying to use OpenSSL. I followed steps mentioned > in below link: > > www.openldap.org/pub/ksoper/OpenLDAP_TLS_obsolete.html > > Since i don't want to use CA certificate so i followed steps for Self > signed certificate only. > > But when i try to do SSL connection check by following command: > openssl s_client -connect localhost:636 -showcerts > or > openssl s_client -connect <ip>:636 -showcerts > or > openssl s_client -connect hostname:636 -showcerts > > > I get following handshake error: > > [root@ldap openldap]# openssl s_client -connect <ip>:636 -showcerts > CONNECTED(00000003) > 140342266091336:error: > 140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:184: > --- > no peer certificate available > --- > No client certificate CA names sent > --- > SSL handshake has read 0 bytes and written 113 bytes > --- > New, (NONE), Cipher is (NONE) > Secure Renegotiation IS NOT supported > Compression: NONE > Expansion: NONE > > > > Any help in resolving the error would be appreciated. > > -- > Warm Regards, > Ankit Tripathi > Toshiba Global Commerce Solutions > 91-9535009075 > > -- Warm Regards, Ankit Tripathi Toshiba Global Commerce Solutions 91-9535009075 ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
