I was going to say no TLS on either side.  <br><br>Specifically because I wanted to make sure that I was doing it with basic auth prior to using tls, but I found TLS lines in the /etc/ldap.conf.<br><br>I commented those out, and guess what, no more nss_ldap messages in /var/log/messages..<br>
<br>Now, I&#39;m somewhat guessing that my directory doesn&#39;t have the right information in it.  Maybe I just need an ldif recipe for adding the users.<br><br>Peter<br><br><div class="gmail_quote">On Wed, Dec 16, 2009 at 11:33 AM,  <span dir="ltr">&lt;<a href="mailto:m.roth@5-cent.us">m.roth@5-cent.us</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div class="h5"><br>
</div></div>First question: do you have tls enabled on the client, and not the server,<br>
or vice versa?<br>
<br>
Second question: on the server, can you do a search?<br>
<br>
Handy tool: webmin has a whole ldap section, and can give you a *lot* of<br>
clues as to what&#39;s going wrong.<br>
<br>
       mark<br>
<div><div></div><div class="h5"><br>
_______________________________________________<br>
CentOS mailing list<br>
<a href="mailto:CentOS@centos.org">CentOS@centos.org</a><br>
<a href="http://lists.centos.org/mailman/listinfo/centos" target="_blank">http://lists.centos.org/mailman/listinfo/centos</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Peter Serwe<br><a href="http://truthlightway.blogspot.com/">http://truthlightway.blogspot.com/</a><br>