This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: Openldap 2.4.48-1 vs my company's pki
- From: Brian Inglis <Brian dot Inglis at SystematicSw dot ab dot ca>
- To: cygwin at cygwin dot com
- Date: Mon, 5 Aug 2019 16:41:32 -0600
- Subject: Re: Openldap 2.4.48-1 vs my company's pki
- References: <CAN9EdkY=zrEv31+PD8XXu9rVw4H_eXLEoMk5u=7H02Q1Xu7-Wg@mail.gmail.com> <87ftmje5zb.fsf@Rainer.invalid> <CAN9EdkYzh558w=CG3UkzgN0rg98eVx2V0BcdktEwVEW3dS1qCQ@mail.gmail.com> <874l2y4ulo.fsf@Rainer.invalid> <CAN9EdkYG1aFnaMAPM3jg=0psRoiS1rF7Hze618UYj1mHByjKbg@mail.gmail.com> <228DE7899A9CF9C913C8B1B8@192.168.1.39> <CAN9Edkbv6ZaHyLs3MVyYapgYa3XiXU2D+kr8o2zTCJivk8h0-w@mail.gmail.com>
- Reply-to: Brian dot Inglis at SystematicSw dot ab dot ca
On 2019-08-05 14:06, David Goldberg wrote:
> On Mon, Aug 5, 2019, 15:25 Quanah Gibson-Mount wrote:
>> On Monday, August 05, 2019 9:22 AM -0400 David Goldberg wrote:
>>> Sorry, was away from work over the weekend. I just tested with openssl
>>> s_client and it works just fine. Version is 1.1.1. there is no self
>>> signed certificate. It's signed with the company pki rather than
>>> commercial and I've properly installed that chain. The problem send to be
>>> with the new build, at least the weird ldd output leads me to that
>>> conclusion. I'll try to find some time to build from source and see if it
>> Do you mean you connected to the ldap server using OpenSSL s_client to
>> confirm that works? If that works and the ldapsearch (or other ldap
>> client) binary does not, then you likely have a global /etc/ldap.conf (or
>> whereever this build looks for it) or a ~/.ldaprc file that defines the
>> path or file to find the CA certificate that would need updating.
> Correct, openssl s_client works, as does the older build of ldapsearch. I
> can't find any .ldaprc nor ldap.conf files on my system.
> Unfortunately I've only set up my system for end user purposes. Building
> from source will be a challenge. Any guidance (a link is fine) on what
> packages to install to set that up? And do I need to worry about the
> .cygport and patch files in the source distribution or will configure pick
> them up?
Install the cygport package and all its dependencies, plus the openldap source
package, plus any build dependency packages named in the openldap.cygport
DEPEND="" list.
Change to the directory containing openldap.cygport and type:
$ cygport openldap.cygport download all test
and deal with any missing lib*-devel packages or other issues arising during the
build.
--
Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada
This email may be disturbing to some readers as it contains
too much technical detail. Reader discretion is advised.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple