sasl 2.1.9 + LDAPS problem

Igor Brezac igor at ipass.net
Wed Oct 16 16:45:02 EDT 2002


On Wed, 16 Oct 2002, Felix Cuello wrote:

> Well...
>
>    I'm trying now to start slapd with -d 8, but I have a little problem to
> start ldaps, because running daemon directly from command line ldaps
> doesn't start, but works if I run from ldap script...
> [when I resolve this problem I will send openldap logfile]
>

Try

slapd -d 8 -h "ldap:/// ldaps:///"

>    But... I was tried this:
>
>    Sniffing connections using ethereal I see that:
>
>    saslauthd doesnt send "Client Hello" (SSL)
>
>    and when I do
>
>    ldapsearch -x -H ldaps://upsoluciones.palermo.edu/ -b
> ou=people,dc=palermo,dc=edu -Duid=cyrus,ou=people,dc=palermo,dc=edu -W
> uid=fcuell
>
>    ldapclient send "Client Hello" and the connection is established..
>    Then all fields in fcuell are displayed.
>
>
> I think that ldap server expects "Client Hello" from saslauthd and it
> never comes.
>
> What do you think?
>

I am really not sure how does the protocol work, but I do not think this
is the problem.  saslauthd/ldap and ldapsearch use the same ldap API
calls, so in theory it _should_ work.  But...

What version of cyrus-sasl do you use?

-- 
Igor





More information about the Info-cyrus mailing list