[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: 2.1.9 + TLS

To: Matty <mattyml@bellsouth.net>
Subject: Re: 2.1.9 + TLS
From: Simon Gao <sgao@sci.utah.edu>
Date: Thu, 02 Jan 2003 12:43:51 -0700
Cc: openldap-software@OpenLDAP.org
References: <3E0A0C01.2080209@bellsouth.net>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020827

Matty wrote:

Howdy folks,

I am going nuts trying to get OpenLDAP version 2.1.9 to instantiate
the Secure LDAP instance. I followed the directions on
http://www.openldap.org, and added:

TLSCertificateFile    /usr/local/openldap/etc/certs/ldapcert.pem
TLSCertificateKeyFile /usr/local/openldap/etc/certs/ldapkey.pem
TLSCACertificateFile  /usr/local/openldap/etc/certs/cacert.pem

to my slapd.conf configuration file. Each of these files is in
PEM format, and a debug level -1 doesn't show any errors. I am
100% confused as to what I did wrong :(

Thanks for any insight,
Ryan


You need to add the following line before others:

TLSCipherSuite HIGH:MEDIUM:+SSLv2

Also, make sure what ever user to run slapd as has read access the ldapkey.pem.

Simon

Prev by Date: Re: Anyone succeeds with OpenLDAP 2.1.9 + autofs on Redhat 8.0?
Next by Date: host attribute can't be added in OpenLDAP 2.1.x
Index(es):
- Chronological
- Thread