October 18th, 2011, 02:03 PM
Secure LDAP connection always fails?
Hello. I am developing some php software to modify our active directory over a secure channel. We have multiple AD servers running Win2003 and win2008 domain controllers. LDAP connections work fine, but ldaps/ldap+tls connections always fail with the same error "A TLS packet with unexpected length was Received ..". The server runs Ubuntu 10.04.3 LTS. I've also tried going through http://greg.cathell.net/php_ldap_ssl.html (but adapting it to my linux environment); still no success in connecting over a secure channel. Any ideas?
root@sm13:~# ldapsearch -Hldaps://baz -tt -x -D "email@example.com" -b "dc=bar,dc=local" -W -L "cn=computerobject" -d 9
Enter LDAP Password:
ldap_new_connection 1 1 0
ldap_connect_to_host: TCP baz:636
ldap_connect_to_host: Trying x.x.x.x:636
ldap_pvt_connect: fd: 3 tm: -1 async: 0
TLS: can't connect: A TLS packet with unexpected length was received..
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
root@sm13:~# TLS: can't connect: A TLS packet with unexpected length was received.