>>> On Mon, Apr 6, 2009 at 7:02 PM, in message <49da8a1b.5070...@gmail.com>, >>> Chris <dmag...@gmail.com> wrote: > Keith Lawson wrote: >> Hello, >> >> I'm trying to connect to and LDAP server using PHP over SSL. I compiled > Openldap from source, installed it and then compiled PHP against that > install. I have a tiny PHP script for testing that I have been calling from > the command line (php scriptname). Before adding "TLS_REQCERT never" to > ldap.conf that script was failing. After I set that setting in ldap.conf > ldaps:// connections work from the command line but when I call the exact > same code in a browser it fails. > > (I assume ldap.conf refers to the config for openldap). > > PHP doesn't know what ldap.conf is or what it does. > > Are you sure you're connecting to the same ldap server? (Stupid question > but worth checking). > > If you could run apache in standalone mode (see > http://bugs.php.net/bugs- generating- backtrace.php for some info about > that) you might be able to strace the process to see what's going on.
My problem was that I had compiled Apache against the Solaris 10 openSSL libraries version 0.9.7. When I installed OpenLDAP and recompiled PHP I manually build new openSSL libs that were version 0.9.8. Rebuilding apache and linking to the same openSSL libraries resolved this problem for me. That explains why I was seeing different behavior with command line PHP than when I called the same code through Apache. truss (Solaris strace) brought this to my attention, thanks for the suggestions Chris. -------------------------------------------------------------------------------- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
