Re: [squid-users] LDAP & Novell

From: Dan Cave <mogul@dont-contact.us>
Date: Tue, 17 Dec 2002 11:16:31 -0000

Tim,

Is you Novell NDS server running an SSL enabled ldap server? you need to
make sure that any connections between your squid box and novell server
must be ssl'd (if that's what you want to achieve, otherwise normal )

Does your squid server have a valid ssl certificate?

try doing a strace/lsof/ptrace of your squid process to see whats going on
when you try and connect to the novell box.. that'll point you in the right
direction.

dan

----- Original Message -----
From: "Tim Bernhardson" <TBERNHAR@sunmaid.com>
To: <squid-users@squid-cache.org>
Sent: Monday, December 16, 2002 6:41 PM
Subject: RE: [squid-users] LDAP & Novell

I am at the same point Jay is at in attempting to get ldap authentication
via SSL to Novell NDS.

When I try squid_ldap_auth (or ldapsearch) from the command line I get the
message "squid_ldap_auth: WARNING, could not bind to binddn 'Can't contact
LDAP server'" (if I take out the SSL options it works fine).

I'm thinking at this point that it is a problem between openssl & Novell
since I can connect to the Novell server & do queries with no problems using
a Java Utility (ldapbrowser) that uses JSSE instead of OpenSSL.

Does anyone have this running against Novell NDS using SSL with the Novel
server using self signed certificates (I ran the command 'openssl
s_client -connect novellserver:636' to double check the SSL Cert and the
only error that came up was that it was a self signed certificate).

Tim Bernhardson
Senior Technical Engineer
Certified Citrix Metaframe Administrator
Certified CyberGuard Administrator
Certified AIX 4.3 System Administrator
Sun-Maid Growers of California
7273 Murray Drive, Ste 18
Stockton, CA 95210

tbernhar at sunmaid dot com
Received on Tue Dec 17 2002 - 04:16:45 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:06 MST