On Wed, May 06, 2026 at 09:47:17AM -0400, Bill Cole via Postfix-users wrote:
> The question I can't answer is which *_tls_CApath or *_tls_CAfile parameter
> Postfix uses when doing LDAP. Or maybe you need tls_append_default_CA set to
> "yes" so that whatever Postfix is using gets augmented by whatever your
> ldapsearch is using as a trust anchor.
Insufficient attention to detail. The obvious answer is in the original
settings logged in the OP's first post.
I asked the OP to explain what he had in mind when specifying his own
cert chain as the CA store instead of an actual CA store.
Hopefully, the right neurons will fire, and the solution will become
obvious.
--
Viktor. 🇺🇦 Слава Україні!
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
