[Freeipa-devel] [PATCH] 233 Fix ipa-replica-manage TLS connection error
Rob Crittenden
rcritten at redhat.com
Tue Mar 13 20:08:07 UTC 2012
Rich Megginson wrote:
> On 03/08/2012 05:33 AM, Martin Kosek wrote:
>> New version of openldap (openldap-2.4.26-6.fc16.x86_64) changed its
>> ABI and broke our TLS connection in ipa-replica-manage. This makes
>> it impossible to connect for example to Active Directory to set up
>> a winsync replication. We always receive a connection error stating
>> that Peer's certificate is not recognized even though we pass
>> a correct certificate.
>>
>> This patch fixes the way we set up TLS. The change is backwards
>> compatible with older versions of openldap.
>>
>> https://fedorahosted.org/freeipa/ticket/2500
> ack
ACK here too, works fine with old and new openldap.
rob
More information about the Freeipa-devel
mailing list