Solaris Ruby -> MS ActiveDirectory/LDAP using a certificate? (and testing with ldapsearch)
Posted on 2008-06-23
I am trying to make an LDAP connection from Ruby in Solaris (currently using Net::LDAP), over SSL, with a provided certificate file.
There are enough unknowns that I'm not clear where my problem is. I've also been trying to test using OpenLDAP's ldapsearch tool.
My client provided a file, "certnew.cer". I have Ruby built, Net::LDAP installed, OpenSSL installed, and OpenLDAP (for client tools).
Here's my ldapsearch test attempt with result:
$ ldapsearch -b 'dc=subd,dc=client,dc=com' -h adapps.subd.client.com -p 636 -Z -N certnew.cer -W SomePassword -v '(objectclass=*)'
ldapsearch: started Mon Jun 23 21:13:35 2008
ldap_init( adapps.subd.client.com, 636 )
SSL initialization failed: error -8174 (security library: bad database.)
I assume it makes more sense to get ldapsearch working before attempting this in Ruby (as my Ruby efforts fail as well, but leave more room for error on my part).