ldapsearch over SSL can not bind

Matthias Apitz guru at unixarea.de
Mon Nov 2 16:22:19 UTC 2015


I'm trying to make from FreeBSD a LDAPsearch in some Novell eDirectory
with the following command:

$ ldapsearch -Z -H ldaps://romega:1027 -b 'ou=person,o=uni' -D 'cn=XXXXXXXXXX,ou=service,o=uni' -w XXXXXXXXXX
ldap_start_tls: Can't contact LDAP server (-1)
	additional info: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed (self signed certificate in certificate chain)
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)

The credentials are fine and are wirking without any problem, for
example from Windos clients (JXplore) or from a Java written client
running on my laptop.

Openssl can connect fine too.

Any ideas what could be wrong?

Btw: Someone here who managed to work JXplore in FreeBSD? There is an
installer for it which can not find libstdc++.so.4 on my system (I have

Vy 73

Matthias Apitz, ✉ guru at unixarea.de, 🌐 http://www.unixarea.de/  ☎ +49-176-38902045

More information about the freebsd-questions mailing list