Hi all,

I'm trying to build a little web based password reset util (I won't go into
why iManager won't work for us...) using the Novell CSharp Libraries for
LDAP, but I'm having trouble doing the binds.

Netware 6.5 SP6 eDir 8.7.3.9

set dstrace =+LDAP reuslts shown below

Monitor 0x256 initiating TLS handshake on connection 0x88d5b9a0

DoTLSHandshake on connection 0x88d5b9a0

TLS accept failure 1 on connection 0x88d5b9a0, setting err = -5875. Error
stack:


error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol

TLS handshake failed on connection 0x88d5b9a0, err = -5875

23:27:26

Server closing connection 0x88d5b9a0, socket error = -5875

Connection 0x88d5b9a0 closed


My bind code is like so

LdapConnection _conn = new LdapConnection();

_conn.Connect(_novellLdapHost, 636);
_conn.SecureSocketLayer = true;
_conn.UserDefinedServerCertValidationDelegate += new
CertificateValidationCallback(CertificateVerificat ionCallBack);
_conn.Bind(_novellLoginDN, _novellLoginPassword);


When I use this code, I noticed in wireshark the auth is NOT over SSL - the
login/pw went out in plain text and the error was like so. So I tried doing
the following

LdapConnection _conn = new LdapConnection();

_conn.Connect(_novellLdapHost, 389);
//_conn.SecureSocketLayer = true;
_conn.startTLS();
_conn.UserDefinedServerCertValidationDelegate += new
CertificateValidationCallback(CertificateVerificat ionCallBack);
_conn.Bind(_novellLoginDN, _novellLoginPassword);
When I did this, I recieved the same result via DSTrace, but I saw a
different response in Wireshark!

I see an LDAP response with extendedResp(1).

Response name 1.3.6.1.4.1.1466.20037 (LDAP_START_TLS_OID)
resultCode: success(0)

Yet the DSTRACE Screen shows the same error as the attempted SSL Bind.
I put in a Novell Support case, but they've been slow on their game (grr,
what are we paying for?) to respond via e-mail. Any ideas?

Thanks in advance!