[Freeipa-devel] [PATCH] 233 Fix ipa-replica-manage TLS connection error
Martin Kosek
mkosek at redhat.com
Wed Mar 14 07:32:20 UTC 2012
On Tue, 2012-03-13 at 16:08 -0400, Rob Crittenden wrote:
> Rich Megginson wrote:
> > On 03/08/2012 05:33 AM, Martin Kosek wrote:
> >> New version of openldap (openldap-2.4.26-6.fc16.x86_64) changed its
> >> ABI and broke our TLS connection in ipa-replica-manage. This makes
> >> it impossible to connect for example to Active Directory to set up
> >> a winsync replication. We always receive a connection error stating
> >> that Peer's certificate is not recognized even though we pass
> >> a correct certificate.
> >>
> >> This patch fixes the way we set up TLS. The change is backwards
> >> compatible with older versions of openldap.
> >>
> >> https://fedorahosted.org/freeipa/ticket/2500
> > ack
>
> ACK here too, works fine with old and new openldap.
>
> rob
I fixed a typo in a comment and pushed to master, ipa-2-2.
Martin
More information about the Freeipa-devel
mailing list