Correct. As mentionned in the Administrator Guide:
If the signing CA was not a top-level (root) CA, certificates for the
entire sequence of CA's from the signing CA to the top-level CA should
be present.
http://www.openldap.org/doc/admin24/tls.html
** Changed in: openldap (Ubuntu)
Status
** Changed in: openldap (Ubuntu)
Sourcepackagename: openldap2.2 => openldap
--
ldap over ssl fails
https://bugs.launchpad.net/bugs/231321
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubun
This bug report may be invalid, it seems ldapsearch is fussy and
requires all certificates up the chain be verifiable. So the following
commands fixed the problem:
cd /etc/ssl/certs
cat root.pem class3.pem > /etc/ssl/cacert.pem
vim /etc/ldap/ldap.conf to use the value for TLS_CACERT
I believe it
