Can you please provide the exact steps to reproduce the issue? Please include the versions of the nspr, nss, openldap, and 389-ds-base packages.On 07/19/2013 06:43 AM, Darcy Hodgson wrote:
Hello,
I have been setting up SSL/TLS with 389 DS on CentOS 6.4. I have been able to get it working and can connect with LDAPS. However when I started to disabled some of the ciphers I noticed that my server wasn't accepting any of the DHE ciphers. I enabled all the ciphers with +all and used sslmap to confirm that the server was only choosing RSA.
I checked the logs and the only thing they say is "Cannot communicate securely with peer: no common encryption algorithm(s)."
Any help getting the DHE ciphers to work or pointing me to some documentation would be appreciated.
Have you tried openssl s_client?
Thanks,
Darcy