石坚强 2015-09-23 08:35 采纳率: 0%
浏览 3366

openldap+ssl配置服务器和客户端的双向认证问题!弄了一个星期了,大神来看看吧!在线等

TLS trace: SSL_connect:SSLv3 read server certificate A
TLS trace: SSL_connect:SSLv3 read server certificate request A
TLS trace: SSL_connect:SSLv3 read server done A
TLS trace: SSL_connect:SSLv3 write client certificate A
TLS trace: SSL_connect:SSLv3 write client key exchange A
TLS trace: SSL_connect:SSLv3 write change cipher spec A
TLS trace: SSL_connect:SSLv3 write finished A
TLS trace: SSL_connect:SSLv3 flush data
TLS trace: SSL3 alert read:fatal:bad certificate
TLS trace: SSL_connect:failed in SSLv3 read finished A
TLS: can't connect: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate.
ldap_err2string
ldap_start_tls: Can't contact LDAP server (-1)
additional info: error:14094412:SSL routines:**SSL3_READ_BYTES:sslv3 alert bad certificate**

服务端的配置文件slapd.conf:
{
                        *******
                        TLSVerifyClient demand
                        *******
}

TLSVerifyClient的参数设为demand后,服务器和客户端的认证就出错了。
设为allow是没有问题的
  • 写回答

1条回答 默认 最新

  • mhpmii 2015-09-24 03:19
    关注

    打开证书看一下密钥用法里面有没有客户端验证,换一套证书试一下

    评论

报告相同问题?

悬赏问题

  • ¥15 如何在scanpy上做差异基因和通路富集?
  • ¥20 关于#硬件工程#的问题,请各位专家解答!
  • ¥15 关于#matlab#的问题:期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707,使系统具有较小的超调量
  • ¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
  • ¥30 截图中的mathematics程序转换成matlab
  • ¥15 动力学代码报错,维度不匹配
  • ¥15 Power query添加列问题
  • ¥50 Kubernetes&Fission&Eleasticsearch
  • ¥15 報錯:Person is not mapped,如何解決?
  • ¥15 c++头文件不能识别CDialog