[tpop3d-discuss]tpop and ldap tls problem
Adam
a.chabin at amg.net.pl
Wed, 14 Dec 2005 12:39:44 +0100
Daniel Tiefnig wrote:
>Adam wrote:
>
>
>>auth-ldap-url: ldap://xxxxxxxxx/ou=People,o=company,c=pl
>>
>>
>
>
>
>>And all work great. I try to change ldap to ldaps, and activate
>>"auth-ldap-use-tls: true" option in tpop3d.conf, but I have such
>>error:
>>
>>
>
>
>
>>Dec 14 09:45:02 yyyyy tpop3d[20396]: auth_ldap_connect:
>>ldap_start_tls_s: Can't contact LDAP server
>>
>>
>
>
>
>>I don't think that is TLS problem, because on yyyyyyyyy:
>>
>>openssl s_client -host xxxxxxx -port 636 -CAfile
>>/etc/openssl/cacert.pem
>>
>>
>
>You are using port 636 here, but auth-ldap will use port 389. You'll
>have to specify port 636 in your auth-ldap-url to make that work the way
>you want. If you run tpop3d with "-v" it will print the LDAP URL it is
>using at DEBUG level.
>
>lg,
>daniel
>
>
Hi,
my new auth-ldap-url:
"auth-ldap-url: ldaps://xxxxxxxxx/ou=People,o=company,c=pl"
[root@yyyyy etc]$ tpop3d -d -v
parse_listeners: listening on address some.address:110; TLS mode STLS
parse_listeners: listening on address some.address:995; TLS mode immediate
auth_ldap_init: using DN ou=People,o=company,c=pl on xxxxxxxx:636
1 authentication drivers successfully loaded
net_loop: tpop3d version 1.5.3 successfully started
net_loop: terminating on signal 2
and... the same error:
Dec 14 12:37:50 yyyyy tpop3d[25388]: auth_ldap_connect:
ldap_start_tls_s: Can't contact LDAP server
Dec 14 12:37:50 yyyyy tpop3d[25388]: auth_ldap_connect:
ldap_start_tls_s: Can't contact LDAP server
Dec 14 12:37:50 yyyyy tpop3d[25388]: auth_ldap_connect:
ldap_start_tls_s: Can't contact LDAP server
Dec 14 12:37:50 yyyyy tpop3d[25388]: auth_ldap_new_user_pass: unable to
connect and bind to LDAP server
Regards
Adam