disable ldap hostname verification?

Cantor, Scott cantor.2 at osu.edu
Wed May 10 10:39:09 EDT 2017

On 5/10/17, 10:32 AM, "users on behalf of Jeffrey Crawford" <users-bounces at shibboleth.net on behalf of jeffreyc at ucsc.edu> wrote:

> There is a file in ${IDP_HOME}/credentials/ldap-server.crt, just put the ldap server cert or root ca in that file. I often use openssl
> s_client against the ldaps port of the ldap server if you don't have direct access to the cert.

The cert name still has to match, that's what the OP is having issues with. Hostname verification is a separate step.

-- Scott

More information about the users mailing list