<html><head></head><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:14px"><div id="yui_3_16_0_ym18_1_1459193848375_3817"><span id="yui_3_16_0_ym18_1_1459193848375_3828">I'm not seeing that. Mine is connecting over 636.</span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818"><span><br></span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818"><span id="yui_3_16_0_ym18_1_1459193848375_3931">Maybe its failing back to cleartext if SSL fails.</span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818"><span><br></span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818" dir="ltr"><span id="yui_3_16_0_ym18_1_1459193848375_3992">I know with every system I've setup LDAP on it requires setting the CACert in the ldap.conf file</span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818" dir="ltr"><span><br></span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818" dir="ltr"><span id="yui_3_16_0_ym18_1_1459193848375_4040">/etc/openldap/ldap.conf<br></span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818" dir="ltr"><span id="yui_3_16_0_ym18_1_1459193848375_4041">TLS_CACERT /etc/pki/tls/certs/TrustedRoot2015.pem<br></span></div><div id="yui_3_16_0_ym18_1_1459193848375_3818" dir="ltr"><span><br></span></div> <div class="qtdSeparateBR"><br><br></div><div class="yahoo_quoted" style="display: block;"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 14px;"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div dir="ltr"><font size="2" face="Arial"> On Monday, March 28, 2016 8:11 AM, Brian Novogradac <Brian.Novogradac@utoronto.ca> wrote:<br></font></div> <br><br> <div class="y_msg_container"><div id="yiv6055996592">
<style><!--
#yiv6055996592
_filtered #yiv6055996592 {font-family:"Cambria Math";panose-1:2 4 5 3 5 4 6 3 2 4;}
_filtered #yiv6055996592 {font-family:"Calibri Light";panose-1:2 15 3 2 2 2 4 3 2 4;}
_filtered #yiv6055996592 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}
#yiv6055996592
#yiv6055996592 p.yiv6055996592MsoNormal, #yiv6055996592 li.yiv6055996592MsoNormal, #yiv6055996592 div.yiv6055996592MsoNormal
{margin:0cm;margin-bottom:.0001pt;font-size:11.0pt;font-family:"Calibri", sans-serif;}
#yiv6055996592 a:link, #yiv6055996592 span.yiv6055996592MsoHyperlink
{color:#0563C1;text-decoration:underline;}
#yiv6055996592 a:visited, #yiv6055996592 span.yiv6055996592MsoHyperlinkFollowed
{color:#954F72;text-decoration:underline;}
#yiv6055996592 span.yiv6055996592EmailStyle17
{font-family:"Calibri", sans-serif;color:windowtext;}
#yiv6055996592 .yiv6055996592MsoChpDefault
{font-family:"Calibri", sans-serif;}
_filtered #yiv6055996592 {margin:72.0pt 72.0pt 72.0pt 72.0pt;}
#yiv6055996592 div.yiv6055996592WordSection1
{}
--></style>
<div>
<div class="yiv6055996592WordSection1">
<div class="yiv6055996592MsoNormal">Hello,</div>
<div class="yiv6055996592MsoNormal"> </div>
<div class="yiv6055996592MsoNormal">I am having a tough time here hope someone could shed some light. I have no problem using the application via AD unencrypted 389. I go to activate using SSL protocol by changing 'authLDAPUseSSL1' => true.</div>
<div class="yiv6055996592MsoNormal"> </div>
<div class="yiv6055996592MsoNormal">After a bunch of digging and troubleshooting the application is still trying to use port 389 instead of 636.
</div>
<div class="yiv6055996592MsoNormal"> </div>
<div class="yiv6055996592MsoNormal">Any help appreciated</div>
<div class="yiv6055996592MsoNormal"> </div>
<div class="yiv6055996592MsoNormal"><span style="color:black;">Brian Novogradac<br>
</span><span style="background:white;">System Analyst</span><span style="background:white;">, Computing Services (I&ITS)</span><span style="color:black;"><br>
<br>
University of Toronto at Mississauga<br>
3359 Mississauga Road N.<br>
Mississauga, Ontario, L5L 1C6<br>
<br>
(P) 416-435-2543<br>
(F) 905-569-4343<br>
(E) </span><span style="color:#4472C4;"><a rel="nofollow" ymailto="mailto:brian.novogradac@utoronto.ca" target="_blank" href="mailto:brian.novogradac@utoronto.ca"><span style="color:#4472C4;">brian.novogradac@utoronto.ca</span></a></span><span style="color:black;"></span></div>
<div class="yiv6055996592MsoNormal"><span style="color:black;">(W)
</span><span style="color:#4472C4;"><a rel="nofollow" target="_blank" href="http://www.utm.utoronto.ca/iits"><span style="color:#4472C4;">www.utm.utoronto.ca/iits</span></a></span><span style="color:black;"><br>
<br>
</span><span style="font-size:10.0pt;color:black;">This E-mail contains privileged and confidential information intended only for the individual or entity named in the message. If the reader of
this message is not the intended recipient, or the agent responsible to deliver it to the intended recipient, you are hereby notified that any review, dissemination, distribution or copying of this communication is prohibited. If this communication was received
in error, please notify the sender by reply E-mail immediately, and delete and destroy the original message.</span><span style=""></span></div>
<div class="yiv6055996592MsoNormal"> </div>
</div>
</div>
</div><br>_______________________________________________<br>ZendTo mailing list<br><a ymailto="mailto:ZendTo@zend.to" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a><br><a href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto" target="_blank">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a><br><br></div> </div> </div> </div></div></body></html>