We have been getting this error and needs to be fixed.
We use python code to connect to LDAP and this is trowing the following
ldap.SERVER_DOWN: {'info': 'TLS: hostname does not match CN in peer certificate', 'desc': "Can't contact LDAP server"}
Is there a way to ignore this name mismatch?
The same thing is working on java to LDAP but in python its failing.
Configuring in OpenLDAP 2.1 and later - Since 2.1, the client libraries will verify server certificates. This change requires clients to add the TLS_CACERT (or, alternately, the TLS_CACERTDIR) option to their system-wide ldap.conf(5) file. Without this setting, the LDAP clients will fail to make any TLS/SSL connections to any servers.
See the Using TLS chapter of the OpenLDAP Software Admin Guide for more information
http://www.openldap.org/faq/index.cgi?_highlightWords=ssl&file=185
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.