Josh wrote:
>> Patrick A. Treptau wrote:
>>> I am pulling my hair out trying to connect via ldaps to one of our AD
>>> controllers.
>>>
>>> host = "ldaps://ad_host:636"
>>
>> You should always use the fully-qualified which is in the CN of the server
>> certificate's subject DN.
>
> Patrick isn't the only one running into the issue by the way, I see if
> appearing
> for me as well. Windows 2008 server, getting ldap.SERVER_DOWN: {'info':
> '(unknown error code)', 'desc': "Can't contact LDAP server"} When I try to
> connect with ldaps:// to our host using it's FQDN.
As said try to debug with
openssl s_client -connect ad_host:636 -verify
(use -CApath or -CAfile options)
preferrably using the OpenSSL command-line tool linked to the same libs like
python-ldap.
Ciao, Michael.
------------------------------------------------------------------------------
This SF.net Dev2Dev email is sponsored by:
Show off your parallel programming skills.
Enter the Intel(R) Threading Challenge 2010.
http://p.sf.net/sfu/intel-thread-sfd
_______________________________________________
Python-LDAP-dev mailing list
Python-LDAP-dev@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/python-ldap-dev
