17 Jul
2019
17 Jul
'19
8:52 a.m.
On Jul 17, 2019, at 8:44 AM, Dave Walsh <dave_walsh@lsrhs.net> wrote:
Just to close the loop on this, creating a PEM with the full chain wasn't enough. But I was able to bypass the certificate error by using stunnel.
That's good, I guess.
Amazingly, Google's directions worked as written. :)
That's bad. It's just not necessary. And, it breaks *other* authentication methods. If the only thing you're doing is PAP to Google's LDAP server, it's fine. But it *will* break for everything else. Their directions are needlessly complex. Alan DeKok.