Laszlo Nagy wrote:
>
> l = ldap.initialize("ldaps://neptunus.msnet:636")
> [..]
> ldap.SERVER_DOWN: {'info': 'error:14090086:SSL
> routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed', 'desc':
> "Can't contact LDAP server"}
>
> I think that I need to specify to the openldap client to trust the
> server's certificate.
Better specify which CA certificate to trust with which the server's
cert is then validated by the OpenSSL lib.
See Demo/initialize.py of python-ldap's source distribution:
http://python-ldap.cvs.sourceforge.net/*checkout*/python-ldap/python-ldap/Demo/initialize.py?content-type=text%2Fplain
Ciao, Michael.
--
http://mail.python.org/mailman/listinfo/python-list
