<div>The error you got from testing with gnutls-cli says GnuTLS on that particular client probably doesn't like the new certificate. Did you renew the CA, server, or both certificates? Can you provide your new and old certificates? On a side note, I recommend migrating from deprecated LDAPS (port 636) to STARTTLS.<br>
</div><div></div><div>> - Certificate[0] info:<br>> # The hostname in the certificate does NOT match 'ldap.fi.trl'.<br></div><div class="gmail_quote"></div><div class="gmail_quote">On Mon, Jun 8, 2009 at 10:54 AM, Simone Piccardi <span dir="ltr"><<a href="mailto:piccardi@truelite.it">piccardi@truelite.it</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div class="im">Michael Kiefer wrote:<br>
> On Maandag 08 Juni 2009 16:43:17 Simone Piccardi wrote:<br>
>> Package: ldap-utils<br>
>> Version: 2.4.15-1.1<br>
>> Severity: normal<br>
>><br>
>> ...<br>
>> so it seems something related to gnutls.<br>
>><br>
><br>
> For me it was a misconfiguration. I think I was able to cure it by setting<br>
> olcTLSVerifyClient: never<br>
><br>
> Michael<br>
<br>
</div>Sorry, but this is not working. Nothing change using<br>
<br>
TLSVerifyClient 0<br>
TLSVerifyClient 1<br>
TLSVerifyClient never<br>
<br>
in slapd.conf<br>
<div class="im"><br>
Simone<br>
--<br>
Simone Piccardi Truelite Srl<br>
<a href="mailto:piccardi@truelite.it">piccardi@truelite.it</a> (email/jabber) Via Monferrato, 6<br>
Tel. +39-347-1032433 50142 Firenze<br>
<a href="http://www.truelite.it" target="_blank">http://www.truelite.it</a> Tel. +39-055-7879597 Fax. +39-055-7333336<br>
<br>
<br>
<br>
</div><div><div class="h5">_______________________________________________<br>
Pkg-openldap-devel mailing list<br>
<a href="mailto:Pkg-openldap-devel@lists.alioth.debian.org">Pkg-openldap-devel@lists.alioth.debian.org</a><br>
<a href="http://lists.alioth.debian.org/mailman/listinfo/pkg-openldap-devel" target="_blank">http://lists.alioth.debian.org/mailman/listinfo/pkg-openldap-devel</a><br>
<br>
</div></div></blockquote></div><br>