IdP 3.1.0.1 TLS problems
Dave Bartholomew
Dave.Bartholomew at csueastbay.edu
Thu Apr 9 14:32:28 EDT 2015
> how it decides what certificate to offer
The pattern I saw was the <hostname>.school.edu and InCommon certs being
sent to the client in the ACK to the "client hello" frame with the
ldapserver.school.edu cert being sent in the "server hello" frame (which I
would think would be sufficient for the IdP to do its validation).
Right now, I'm getting the LdapErr: DSID-0C090E17 error, so it's not
getting that far.
I can do some more digging, but I expect it to get a bit nasty from
here...
Dave Bartholomew
Cal State University, East Bay
ITS
Dave.Bartholomew at csueastbay.edu
(510) 885 - 2324
More information about the users
mailing list