LDAP = Failed setting connection option certificate_file

Alan DeKok aland at deployingradius.com
Wed Jul 17 14:52:49 CEST 2019

On Jul 17, 2019, at 8:44 AM, Dave Walsh <dave_walsh at lsrhs.net> wrote:
> Just to close the loop on this, creating a PEM with the full chain wasn't
> enough. But I was able to bypass the certificate error by using stunnel.

  That's good, I guess.

> Amazingly, Google's directions worked as written. :)

  That's bad.  It's just not necessary.  And, it breaks *other* authentication methods.

  If the only thing you're doing is PAP to Google's LDAP server, it's fine.  But it *will* break for everything else.

  Their directions are needlessly complex.

  Alan DeKok.

More information about the Freeradius-Users mailing list