"Steve Huff" <shuff at vecna.org> wrote in message news:3FA0BDAB-B7D0-42B7-8615-5A7FD2F84FBA at vecna.org... > On Aug 17, 2009, at 4:51 PM, "Eric B." > <ebenze at hotmail.com> wrote: > >> Any ideas where I might be able to find some >> help for it? I enabled full logging on my OpenLDAP server, and I >> see it >> failing with TLS negotiaiton for some reason, even when I don't want >> it to >> use TLS. > > 'man libuser.conf' worked well for me. from this doc you will learn > that libuser requires either TLS or a ldaps:// URI. I've read through libuser.conf and the specific for ldap server says: "A domain name or an URI of the LDAP server. The URI can use the ldap or the ldaps protocol. When a simple domain name is used, the connection fails if TLS can not be used; an URI using the ldap protocol allows connection without TLS. Default value is ldap." My libuser.conf reads: server ldap://snoopy.domain.com/ According to the man pages, this should allow for the connection without TLS. Thoughts? Thanks, Eric