Hallo there
i wan to make my ldap connect with the client pc's over ssl
(like this one)
http://www.openldap.org/pub/ksoper/OpenLDAP_TLS.html#4.0
or this one
http://www.madboa.com/geek/openssl/#cert-self
i have already made a self signed key and all the steps i found through the internet...
but when i try to do one of the last steps and i have an error
"error 18 at 0 depth lookup:self signed certificate."


has anyone any idea....


P.S.: sorry for the title...connection :)

+i think i have problem retrieving the files
which i have made for the authentication...
such as
...key.pem
...cer.pem

quick update....
the only problem i finally have is from the client side...when i test the ssl connection...

Error opening client certificate file /home/users/certs/ldap.client.cert.pem
23330:error:02001002:System library:fopen:No such file or directory:bss_file.c:356:fopen('/home/users/certs/ldap.client.cert.pem','r')
23330:error:20074002:BIO routines:FILE_CTRL:System lib:bss_file.c:358:
unable to load certificate

quick update2

i changed at files
slapd.conf
ldap.conf
the
TLSVerifyClient demand and put it on the try option... both

so now it works..... but i am not sure is the right way...


nway now i face another problem
i cant login to the ldap through the website....

any ideas..

(sorry for the multiple posts...but i think people who would like to try and do what i did will be helped cause thinks on google about this subject are really insufficient)

I am pretty sure i am facing a TLS negotiation problem
i am using the 2.3.43 version..
any ideas out there?

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.