delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2019/08/05/16:32:03

X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:date:from:reply-to:to:subject:message-id
:in-reply-to:references:mime-version:content-type
:content-transfer-encoding; q=dns; s=default; b=kyGfvjiyQCiSUe/3
jZVzdjbZ0IxUjocloUYEC6qRA8WKl6fM/Cy9TJdpvvOyRQJE3u+xH4I6DwZWfe6x
V8ud/J/q1qu87zbsNVXR0c8y/+Yic3Z3NHFfTdzc7XQXHut4YlOilYvRv/FH0zK+
pIHRZk8Krm9ETITum9uPilJ4N2o=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:date:from:reply-to:to:subject:message-id
:in-reply-to:references:mime-version:content-type
:content-transfer-encoding; s=default; bh=qQ/6ZE+LDmnGE1sjZ4dXfP
iKaXM=; b=j5/HJjKvDik8ydxL6BAV8AQgHJtduMPt6ptP+8D0whbZ9ST/slRYw/
G2EIuHMth6I5R5eV079DZk1nK9kFntb3VVOjsQJ9AHaMryiOLs//Gvjg7uRXaE7V
EQbrp5hn43SWkq2zMBHXxoPieQO50hpygcicAPItjQORD4uQbbSPw=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Spam-SWARE-Status: No, score=-1.7 required=5.0 tests=AWL,BAYES_00,SPF_PASS autolearn=ham version=3.3.1 spammy=H*UA:Win32, challenge, certified
X-HELO: zmcc-2-mx.zmailcloud.com
Date: Mon, 05 Aug 2019 13:31:03 -0700
From: Quanah Gibson-Mount <quanah AT symas DOT com>
Reply-To: Quanah Gibson-Mount <quanah AT symas DOT com>
To: David Goldberg <dsg18096 AT gmail DOT com>, cygwin AT cygwin DOT com
Subject: Re: Openldap 2.4.48-1 vs my company's pki
Message-ID: <C586DBD611E58A4D7C077D2B@[192.168.1.39]>
In-Reply-To: <CAN9Edkbv6ZaHyLs3MVyYapgYa3XiXU2D+kr8o2zTCJivk8h0-w@mail.gmail.com>
References: <CAN9EdkY=zrEv31+PD8XXu9rVw4H_eXLEoMk5u=7H02Q1Xu7-Wg AT mail DOT gmail DOT com> <87ftmje5zb DOT fsf AT Rainer DOT invalid> <CAN9EdkYzh558w=CG3UkzgN0rg98eVx2V0BcdktEwVEW3dS1qCQ AT mail DOT gmail DOT com> <874l2y4ulo DOT fsf AT Rainer DOT invalid> <CAN9EdkYG1aFnaMAPM3jg=0psRoiS1rF7Hze618UYj1mHByjKbg AT mail DOT gmail DOT com> <228DE7899A9CF9C913C8B1B8 AT 192 DOT 168 DOT 1 DOT 39> <CAN9Edkbv6ZaHyLs3MVyYapgYa3XiXU2D+kr8o2zTCJivk8h0-w AT mail DOT gmail DOT com>
MIME-Version: 1.0
X-IsSubscribed: yes 

--On Monday, August 05, 2019 5:06 PM -0400 David Goldberg 
<dsg18096 AT gmail DOT com> wrote:

> Correct, openssl s_client works, as does the older build of ldapsearch.  I
> can't find any .ldaprc nor ldap.conf files on my system.
>
> Unfortunately I've only set up my system for end user purposes. Building
> from source will be a challenge. Any guidance (a link is fine) on what
> packages to install to set that up? And do I need to worry about the
> .cygport and patch files in the source distribution or will configure pick
> them up?

I would start with executing ldapsearch with the -d -1 flag added in (full 
debugging) to see what the client is doing.

I.e., if you're doing startTLS, then something like

ldapsearch -x -ZZ -d -1 -H ldap://<FQDN> -s base -b ""

Or if you're using ldaps, then something like:

ldapsearch -x -d -1 -H ldaps://<FQDN> -s base -b ""

Regards,
Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>


--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019