[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems with openldap2.1.4 and TLS/SSL

To: openldap-software@OpenLDAP.org
Subject: Re: Problems with openldap2.1.4 and TLS/SSL
From: Rick van Rein <rick@vanrein.org>
Date: Tue, 24 Sep 2002 01:18:07 +0200 (CEST)
In-reply-to: <002e01c2634b$c593a5c0$9f01a8c0@champ>

Hoi Frank Swasey,

> > i've create the certificate with the following arguments
> > openssl req -new -x509 -nodes -out server.pem -keyout server.pem -days 365
> 
> Aha!  You generated a self-signed certificate.  That doesn't work with
> OpenLDAP 2.1!  You have to have a real certificate (something certified by a
> CA).

Either that, or you should mention this cert as a CA-cert itself.
At least, that's what you can do with Apache, I bet this is the same.

-Rick

References:
- Re: Problems with openldap2.1.4 and TLS/SSL
  - From: "Frank Swasey" <Frank.Swasey@uvm.edu>

Prev by Date: Replication Interruption
Next by Date: configure error.
Index(es):
- Chronological
- Thread