Menu
▾
▴
Re: Problem with Net::LDAPS
|
From: Chris R. <chr...@me...> - 2002-03-07 08:38:41
|
Norbert Klasen <nor...@da...> wrote: >=20 >=20 > --On Mittwoch, 6. M=E4rz 2002 15:55 +0000 Chris Ridd > <chr...@me...> wrote: >=20 >> The "file not found" error might be referring to your certificate - it >> may be in the wrong format or something. >>=20 >> Try commenting out the two lines: >>=20 >> verify =3D> 'require', >> certpath =3D> '/home/sean/mycert.cer', >=20 > IIRC Net_SSLeay (as OpenSSL) expects certificates to be in PEM (ascii) > format and DER (binary). Convert with openssl x509 -inform der -in > mycert.cer -out mycert.pem That's correct. There's a note about the required format in the Net::LDAPS manpage, and assuming that the extract from Microsoft's certificate store saved the cert in DER format, that's a good way to convert the cert for OpenSSL's use. There probably should be a HOWTO somewhere describing how to get certs and keys out of various systems (eg MS, Netscape) and into OpenSSL, as this always causes problems for people. This document wouldn't be specific to LDAPS of course.=20 Cheers, Chris |
