Apache 2.2 mod_ldap refusing to work over SSL/TLS

Maxim Khitrov mkhitrov at gmail.com
Wed Nov 25 16:00:15 UTC 2009

On Wed, Nov 25, 2009 at 10:46 AM, Brian A. Seklecki (CFI NOC)
<seklecki at noc.cfi.pgh.pa.us> wrote:
>> As far as I can tell, it doesn't even get to the certificate
>> verification phase even though the STARTTLS command is successful.
> Is there any level of debugging that can be increased on the Apache side ?
>  Possibly a build/compile-time option for the module?
> Debugging apache code can always be tricky because of the threaded/child
> process nature.
> We use mod_authz_ldap and it works "okay", but OpenLDAP an can be a real
> beyotch when it comes to SSL/TLS.
> E.g., we feel your pain.  The only way out, is through.
> ~BAS

I figured it out eventually (see [1]). It's been working without any
problems for a few days now.

- Max

[1] http://lists.freebsd.org/pipermail/freebsd-questions/2009-November/208195.html

More information about the freebsd-questions mailing list