[gnutls-help] issue with Windows 2008r2 Ldap

Nikos Mavrogiannopoulos nmav at gnutls.org
Tue Dec 29 14:04:09 CET 2015


On Mon, Dec 28, 2015 at 12:03 PM, Hilitec <andre at liechti.net> wrote:
> Seyeong Kim <seyeong.kim <at> canonical.com> writes:
>> Hello
>> I have an issue with gnutls ( maybe not ) and Windows 2008r2 Ldap
>> when I tried to ldapsearch to windows ldap, I got below message
>> TLS: can't connect: A TLS packet with unexpected length was received..
>> there are two AD, 2008r2, 2012r2 and I could only see this error on 2012r2
> + ubuntu 14.xx combination
>> I checked gnutls version
>> libgnutls26 | 2.12.23-12ubuntu2.3
>> libgnutls-deb0-28 | 3.3.8-3ubuntu3   | vivid
>> Is there any commits I can refer to this issue?
>> I know there are large differences between two versions. so I need an advice.
> GnuTLS and SChannel (Microsoft) implementations are not (yet) compatible for
> TLS 1.2 negotiation during AD/LDAPS binding.

That's the first time I see something like that. As far as I know
schannel and gnutls are fully compatible with TLS 1.2. Is there any
bug report or more information on that incompatibility that you
mention?

regards,
Nikos



More information about the Gnutls-help mailing list