Solved

Solaris Ruby -> MS ActiveDirectory/LDAP using a certificate? (and testing with ldapsearch)

Posted on 2008-06-23
1
1,190 Views
Last Modified: 2013-12-27
I am trying to make an LDAP connection from Ruby in Solaris (currently using Net::LDAP), over SSL, with a provided certificate file.

There are enough unknowns that I'm not clear where my problem is.  I've also been trying to test using OpenLDAP's ldapsearch tool.

My client provided a file, "certnew.cer".  I have Ruby built, Net::LDAP installed, OpenSSL installed, and OpenLDAP (for client tools).

Here's my ldapsearch test attempt with result:

$ ldapsearch -b 'dc=subd,dc=client,dc=com' -h adapps.subd.client.com -p 636 -Z -N certnew.cer -W SomePassword -v '(objectclass=*)'
ldapsearch: started Mon Jun 23 21:13:35 2008

ldap_init( adapps.subd.client.com, 636 )
SSL initialization failed: error -8174 (security library: bad database.)
~~~

I assume it makes more sense to get ldapsearch working before attempting this in Ruby (as my Ruby efforts fail as well, but leave more room for error on my part).

Thanks
0
Comment
Question by:michaelteter
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 27

Accepted Solution

by:
Nopius earned 250 total points
ID: 21852292
http://docs.sun.com/source/816-6698-10/ssl.html#18560

> Configuring Server Authentication in Clients

> When a client establishes an SSL connection with a server, it must trust the certificate presented by the server. In order to do so, the client must:

>    * Have a certificate database.

It seems you have no certificate database on a client... Read the article above on how to configure your certificate database.
0

Featured Post

Plug and play, no additional software required!

The ATEN UE3310 USB3.1 Gen1 Extender Cable allows users to extend the distance between the computer and USB devices up to 10 m (33 ft). The UE3310 is a high-quality, cost-effective solution for professional environments such as hospitals, factories and business facilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question