>When I do a
>
>ldapsearch -ZZ -x -H ldap://red.ab.com/ -b '' -s base
'(objectclass=*)'+
>
>I get the error:
>
>Ldap_start_tls: Connect error (-11)
> Additional info: error:14077410:SSL
>routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
>
>
Yep, that's most definately an OLDAP error. I'd maybe try taking tls
out of the equation before you get something running well, unless that's
the point you're at. That is to say, adding TLS.
You're running a native ldap command and getting a real ldap error,
samba is no where in the mix. While I'm sure there's a few people
around here that know exactly what that error means, you'd probably get
a lot more traction asking the oldap list. You'll probably find a lot
more references if you limit your search to LDAP specific and not
including samba, if that's the route you've been going on.
As many have said before (ok, maybe just a couple of us), you should
get a firm grasp on your LDAP setup before you ever try to wire up your
samba config to it. What this means is getting your authentication and
replication, if applicable, working like a charm before you even start
the samba daemon up the first time. In your particular case, it looks
like you're also trying to run tls, which is another building block.
You should have the base, wide open, ldap server running to your
understanding before slapping encryption into it.
It's much harder to fine tune your car's road ride if you have problems
keeping the engine running.
>I am pretty new to Linux and samba.
>
>What am I missing here?
>
>Regards,
>Pari
>
>
>
>>>>Paul Gienger <pgienger@ae-solutions.com> 05/11/05 2:39 PM
>>>
>>>>
>>>>
>
>
>
>>Did this issue get resolved? Can someone tell me how it was resolved
>>and what needs to be done? I am running into the same issue.
>>
>>
>
>Maybe if someone communicated the problem a worthwhile response could be
>
>crafted. This message has no references or even the vaugest hint at
>what is going on, aside from some random open connections.
>
>Not trying to pick, but there have been several messages like this
>lately that are 'referencing some problem' without any clear notion
of
>what is being referred to. We need more info, bugzilla number, problem
>description, even being a reply to a previous message would help those
>with a thread sorting mail reader.
>
>
>
--
Paul Gienger Office: 701-281-1884
Applied Engineering Inc.
Systems Architect Fax: 701-281-1322
URL: www.ae-solutions.com mailto: pgienger@ae-solutions.com