Hi, I want to achieve ldaps, that means all the communication should use 636 port, i have changed the parameters in the /etc/openldap/sysconfig file, but no luck.
Regards, Pradyumna On Sat, Aug 27, 2011 at 12:11 PM, Benjamin Griese <[email protected]>wrote: > Hello, > > I don't clearly understand what you're trying to achieve? > > There are two possible ways to do encrypted connections: > - with StartTLS via Port 389 (ldap:// - non-encrypted connections are still > possible, if onfigured in your slapd config) > - with SSL/TLS via 639 (ldaps://) > > You can disable/enable each way in your /etc/sysconfig/openldap file. > > Please read this: http://www.openldap.org/faq/data/cache/185.html > > Bye, Benjamin > > On Sat, Aug 27, 2011 at 12:00, pradyumna dash <[email protected]>wrote: > >> List, >> >> It would be great if someone can share doc on TLS with OpenLDAP >> configuration on SLES 11, I tried all the possible ways to make it happen >> but no luck. >> >> I tried with both yast2 and by CA.pl and openssl commands, but no luck, >> When i do netstat .lnap |grep ldap it shows both 636 and 389 port listtening >> to the >> hostname, When i check the logs it shows the destination port its showing >> is 389. >> >> But when i try ldapsearch -x -H ldaps://hostname, its also showing me the >> ldap contents, dont know whats wrong, I also tried to open >> /etc/sysconfig/openldap >> and assigned the LDAP service to run on 127.0.0.1, but if i do so then its >> not able to get the server. >> >> Please help. >> >> Regards, >> Neo >> > > > > -- > To be or not to be -- Shakespeare | To do is to be -- Nietzsche | To be is > to do -- Sartre | Do be do be do -- Sinatra > >
