Jochen Keutel wrote: > Hello, > we installed the standard OpenLDAP package on Debian 11. Checking the TLS > ciphers offered by the server we could see that all six Camellia ciphers are > gone > (128 and 256, for TLS 1.0, 1.1, 1.2) compared with the standard OpenLDAP > package on Debian 9. > > Is this special to the Debian package? Or: Has Gnutls changed something?
Sounds like a question for Debian or Gnutls communities. > > We did run into this issue because some special devices (e.G. Cisco Prime > Collaboration Assurance) cannot connect to the new OpenLDAP server. The > server logfile > states: TLS handshake: negotiation failure. It's not yet clear whether they > really can "speak" only Camellia ... > > Regards > Jochen. > > -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
