Re: Connecting via LDAPS

[Tom J. <tj...@do...>]

ok, never mind. The problem was on the server side. Seems the Netscape
Directory Server will import a server cert without knowing anything about
the CA that signed it (and without warning you or prompting you to supply
the CA certificate).

After importing the CA certificate that signed my LDAP server's
certificate, everything started working.

	--Tom


On Tue, 5 Dec 2000, Tom Jordan wrote:

>
> I can't seem to get the following bit of code to work properly:
>
> my $ldap = new Net::LDAPS('cautha.doit.wisc.edu',
>                        port => '637',
>                        verify => 'none',
>                        cafile => 'cacerts/cacert.pem') or die "$!";
>
>
> The error message I get back is:
>
> IO::Socket::SSL:  at /usr/perl5/site_perl/5.005/Net/LDAPS.pm line 50
> Uncaught exception from user code:
>         Bad file number at ./ssl_bind.pl line 26.
>
> I've tried setting capath as well as cafile, but to no avail. I tried
> naming the ca cert with it's hash as detailed in the docs for Net::LDAPS,
> but was unsuccessful with that as well.
>
> Can anyone shed some light on how this is supposed to work?
>
> Thanks,
> Tom
>