RE: RHEL4, LDAP, TLS

From: Ryan Golhar (golharam_at_umdnj.edu)
Date: 05/12/05

  • Next message: jan.peuker_at_lst-deutschland.de: "crond root-warnings" 
    Date: Thu, 12 May 2005 16:08:33 -0400
To: "'James Cooley'" <jcooley@fit.edu>, "'General Red Hat Linux discussion list'" <redhat-list@redhat.com>

    No, I don't. I don't have this on the RHEL3 machines either. Here is
    what my ldap.conf looks like for the machines that work:

    host myldapserver.umdnj.edu
    base o=something,o=UMDNJ,c=US
    ssl start_tls
    pam_password md5

    When I use the same thing on EL 4, it doesn't work. I have to disable
    ssl start_tls...

    Ryan

    -----Original Message-----
    From: James Cooley [mailto:jcooley@fit.edu]
    Sent: Wednesday, May 11, 2005 5:02 PM
    To: golharam@umdnj.edu; General Red Hat Linux discussion list
    Subject: Re: RHEL4, LDAP, TLS

    Ryan,

    Do you have your Certificate Authority Certificate defined in
    /etc/ldap.conf?

    The line looks similar to the following:

    tls_cacertfile /etc/certs/myCACert.cer

    And is the CACertificate file readable by everyone?

    Check those two items first, and if they don't solve your issues, I'll
    think of other problem areas.

    --James Cooley

    Ryan Golhar wrote:

    >Hi all,
    >
    >I'm running into a problem and not sure what to do....hoping for some
    >guidance...
    >
    >I have an LDAP server (running RHEL3 AS) using OpenLDAP setup to use
    >ssl and tls.
    >
    >I have about 20 machines (RHEL3 WS) authenticating users via LDAP using

    >TLS
    >
    >I just installed RHEL4 WS on one machine and can't get it to
    >autheticate users via LDAP. I discovered that if I turn off "Use TLS"
    >using authconfig, I can then log in.
    >
    >I'm concerned that 1) the 20 machines running EL3 WS are
    >authenticating using TLS and the EL 4 WS isn't, or 2) TLS isn't
    >configured correctly and the EL3 WS are running without TLS.
    >
    >Is there a way I can check to make sure I have things set up correctly
    >to use TLS?
    >
    >Ryan
    >
    >
    > 

    -- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
  • Next message: jan.peuker_at_lst-deutschland.de: "crond root-warnings"

    Relevant Pages

    • Re: What version of SSL in 5.0 Web Server
      ... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
      (microsoft.public.windowsce.platbuilder)
    • Re: What version of SSL in 5.0 Web Server
      ... I rebooted the device so the Web server is ... SSL in Firefox so that only TLS is running. ... data security between application protocols such as HTTP (the protocol ...
      (microsoft.public.windowsce.platbuilder)
    • Re: What version of SSL in 5.0 Web Server
      ... the registry keys have SSL 3.0 client/Sever Enabled and TLS ... CE 5.0 specifies that the web server supports SSL, ... used by the Web) and the networking protocol TCP/IP. ...
      (microsoft.public.windowsce.platbuilder)
    • Re: Clients unable to access secure websites
      ... Also, double-check for firewall issues - for example, could the non-working machines have a 3rd party firewall like zone alarm or something that's packaged with the AV? ... In trying to research this, firewall seems to be a primary cause of TLS failures. ... > Installed an SBS 2003 R2 server in a company with a mixture of new and> all ...
      (microsoft.public.windows.server.sbs)
    • Re: followup to SSL+LTC
      ... > Could someone please explain the scope of SSL and TLS. ... SSL stands for Secure Socket Layer. ... authenticates the server to the client. ... cert against a known CA cert and uses the server cert's public ...
      (sci.crypt)