On 10/17/07, Alexander Fortin <[EMAIL PROTECTED]> wrote: > > <IfModule util_ldap.c> > LDAPTrustedGlobalCert CA_BASE64 /etc/ssl/certs/cacert.pem > LDAPTrustedMode SSL > LDAPVerifyServerCert off > </IfModule>
Wireshark will format the initial stages of the handshake pretty nicely, you might see something fishy or a plaintext SSL Alert. Can openssl handshake w/ the ldap server? Is its cert issued by that cacert.pem? Can openssl validate the cert chain when you give it that same cacert.pem? -- Eric Covener [EMAIL PROTECTED] --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
