Menu
▾
▴
start_tls using required
|
From: Michael M. <mmn...@gm...> - 2002-11-11 14:15:17
|
Hi!
I have a question concerning start_tls.
When I use verify=>'required' and my LDAP Server does not know the start_tls
extension, it sends me a "unsupported extended operation"-error as
LDAPResult with errornumber 2 (at least Sun DirServ and OpenLDAP does). As
far as I understood, in this case the following search request should not be
started but it looks like the resultCode 2 is looked at as success.
By the way, shouldn't a not supported extension result in a resultCode of
12?
Here is my code:
use Net::LDAP;
$ldap = Net::LDAP->new('localhost', version => 3, port => 389) or die "$@";
$ldap->debug(12);
$ldap->start_tls(verify => 'required', cafile => 'somefile') or die "$@";
...
And here the response to my start_tls from debug:
42: SEQUENCE {
1: INTEGER=1
37: [APPLICATION 24] {
1: ENUM = 2
0: STRING = ''
30: STRING = 'unsupported extended operation'
: }
: }
Thanks!
Florian
|
