search for: ldaptls_reqcert

Hi! I can make ldap authentication to work using LDAPS in CentOS 6. On CentOS 5, I just simply set tls_cheekpeer no to /etc/ldap.conf and it works! I tried all /etc/nslcd.conf /etc/pam_ldap.conf /etc/openldap/ldap.conf It 's really confusing on CentOS 6. Why so many files???? CentOS 5 LDAPTLS_REQCERT=never ldapsearch -x -H ldaps://xxxx (works!) CentOS 6 LDAPTLS_REQCERT=never ldapsearch -x -H ldaps://xxxx (Can 't connect to LDAP Server ...) I 've been reading that there is a bug but I 'm not understanding if there is a workaround for this ... Any ideas???? -- ------------------...

...rver (-1) [good]# It /does/ see the certificate, even though it has a problem with it. Since I know the LDAP server is trustable - despite the certificate issue -, I can work around it with "TLS_REQCERT never" in /etc/openldap/ldap.conf or by prefixing the ldapsearch line with "LDAPTLS_REQCERT=never": [good]# LDAPTLS_REQCERT=never ldapsearch -H "ldaps://ldap.domain.org:6636/" -D <binddn> -x -W -b <searchbase> -d1 -s sub -v "uid=me" ldap_url_parse_ext(ldaps://ldap.domain.org:6636/) ldap_initialize( ldaps://ldap.domain.org:6636/??base ) ldap_create l...