CentOS

I verified my cacert with that command. I believe the relevant part is X509v3 Basic Constraints: CA:TRUE I believe my certificates are fine. I think the issue has something to do with the Moznss vs openssl compatibility issue, but other than running a different version of openldap server I don't see...

Thanks for the tip. I tried what you suggested but it still doesn't work. I checked my cacert with openssl and everything appears to be okay. Openssl Verify: openssl verify -CAfile /etc/openldap/cacerts/cacert.pem /etc/pki/tls/certs/slapd.pem /etc/pki/tls/certs/slapd.pem: OK /etc/openldap/cacerts [r...

Here is the contents of my /etc/openldap/ldap.conf file: cat /etc/openldap/ldap.conf # # LDAP Defaults # # See ldap.conf(5) for details # This file should be world readable but not world writable. #BASE dc=example, dc=com #URI ldap://ldap.example.com ldap://ldap-master.example.com:666 #SIZELIMIT 12 ...

Hello, I am running the latest version of openldap server 2.4.23. When I try to connect to my ldap server using startTLS I get errors. I am able to connect with out using tls. Here is the out put from ldapsearch. [code] ldapsearch -LL -d1 -v -x -W -D 'cn=Manager,dc=localdomain,dc=com' -H ldap://loca...