[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS resource unavailable



On Apr23, 14:45, Patrick Shinpaugh wrote:
> Have you set your server slapd.conf TLS options (i.e.
> TLSCertificateFile, TLSCertificateKeyFile, etc) and does your ldap.conf
> file for your client contain
> 
> ssl start_tls
> 
> You may want to show the slapd.conf and ldap.conf files you are using if
> that didn't help. Also, verify that TLS is supported using something
> similar to
> 
> /opt/openldap/current/bin/ldapsearch -x -v -W -D
> "uid=Manager,dc=foo,dc=com" -s base -b "" "(objectClass=*)" +

i compiled openldap with 


./configure --prefix=/opt/openldap/2.1.25 --sysconfdir=/etc/depot/openldap --localstatedir=/var/depot/openldap --enable-cleartext --
enable-crypt --enable-bdb  --enable-ldap --enable-spasswd --with-tls --with-threads --enable-ldbm --with-cyrus-sasl --enable-passwor
d



i tried to run the thing you suggested..i got i got this error..   i just put in the base dn same as my slapd.conf's one

/opt/openldap/current/bin/ldapsearch -x -v -W -D"uid=Manager,dc=foo,dc=com" -s base -b "dc=foo.com,dc=com" "(objectClass=*)" +
ldap_initialize( <DEFAULT> )
Enter LDAP Password: 
ldap_bind: Confidentiality required (13)
        additional info: TLS confidentiality required


and the logs
aemon: activity on 1 descriptors
daemon: new connection on 10
conn=2 fd=10 ACCEPT from IP=127.0.0.1:35746 (IP=0.0.0.0:389)
daemon: added 10r
daemon: activity on:
daemon: select: listen=6 active_threads=1 tvp=NULL
daemon: select: listen=7 active_threads=1 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 10r
daemon: read activity on 10
daemon: select: listen=6 active_threads=1 tvp=NULL
daemon: select: listen=7 active_threads=1 tvp=NULL
conn=2 op=0 BIND dn="uid=Manager,dc=foo,dc=com" method=128
conn=2 op=0 RESULT tag=97 err=13 text=TLS confidentiality required
daemon: activity on 1 descriptors
daemon: activity on: 10r
daemon: read activity on 10
daemon: removing 10
conn=2 fd=10 closed
daemon: select: listen=6 active_threads=1 tvp=NULL
daemon: select: listen=7 active_threads=1 tvp=NULL
daemon: activity on 1 descriptors
daemon: select: listen=6 active_threads=1 tvp=NULL
daemon: select: listen=7 active_threads=1 tvp=NULL
daemon: activity on 1 descriptors