Bug#570773: squeeze: LDAP connections using TLS do not work
[Holger Levsen]
> Something is wrong with the generation and/or with the distribution of the
> LDAP SSL certificate. LDAP connections using TLS do not work.
>
> Filing as serious as having LDAP configured out of the box is a core
> feature of Debian Edu.
I suspect the cause of my problems during testing is that I install on
a network where the 'ldap' DNS name already exist, causing the
installer to download the wrong server certificate to
/etc/ldap/ssl/ldap-server-pubkey.pem on the main server (it should be
copied from the local disk instead). The certificate is then wrong
when I disconnect the main-server from the local network to test it
after installation.
If I am right, this problem will affect lenny installations too.
I have added some test code to testsuite/ldap-server in svn to detect
when that happen, and hope it will make it posible to verify my
suspicion.
Happy hacking,
--
Petter Reinholdtsen
Reply to: