LDAPS authentication

Gordon Messmer yinyang at eburg.com
Sat Dec 13 23:41:45 UTC 2003

Pedro Fernandes Macedo wrote:
> If I try ldapsearch -H ldaps://ldaps.mydomain -x , I get 
> ~->ldapsearch -H ldaps://ldaps.mydomain -x ldap_bind: Can't contact
> LDAP server (81) additional info: error:14090086:SSL
> routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed ~->

That happens when the CN in the cert doesn't match the domain in the 
LDAP URL.  Make sure that your CN (common name) is set properly, and 
make sure that all clients refer to the LDAP server using that hostname.

More information about the users mailing list