can't use godaddy SSL cert

Erik Norgaard norgaard at
Sun Nov 28 18:23:56 UTC 2010

On 28/11/10 18.51, bluethundr wrote:

> Yes the hostname is in the CN of the cert file. So I agree that -h is
> not the issue. :)
> [root at VIRCENT03:~]#ldapsearch -h ldap -b "dc=summitnjhome,dc=com" -Z
> -D "cn=Manager,dc=summitnjhome,dc=com" "(objectclass=sudoRole)" -W

Maybe I didn't make myself clear: the host name you use to connect to 
(-h), in your command line example above, ldap, must be the same as the 
CN of the server certificate. It is irrelevant if the servers hostname 
is the same as the CN.

That might be why you get

 > ldap_start_tls: Connect error (-11)
 > 	additional info: error:14090086:SSL
 > routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed



BR, Erik

More information about the freebsd-questions mailing list