Novell Open Enterprise Server 11 (OES 11) Linux
ldapsearch doesn't work
cannot do a secure ldap bind
ldap search works from other servers
cannot contact ldap server
TLS accept failure
One server cannot do an ldap search with a secure bind but the same ldap search command works from another server.
Edit /etc/ldap.conf so that it shows only default settings
Edit /etc/openldap/ldap.conf and add TLS_REQCERT ALLOW
Save the setting in openldap/ldap.conf
Restart ldap on the server with nldap -u and nldap -l respectively
An ldap trace shows a TLS accept failure error coming from the server itself, but other servers do not have that error. The TLS_REQCERT option tells the open ldap client in the server to allow the secure connection from the open ldap client.