Re: slapd.conf

["Alexandre Garel" <garel.alexandre@agora.msa.fr>]

Edward de Jongh a écrit :

Hi all I've managed to install OpenSSL for TLS and the install seemed to go without a hitch. I've now come across a new problem. No matter what changes I make to the slapd.conf, slapd will not start. So whether I add new values such as:

 

#

# TLS Security Configuration

#

TLSCertificateFile      /opt/openldap/etc/openldap/ldap_crt.pem

TLSCertificateKeyFile   /opt/openldap/etc/openldap/ldap_crt.pem

TLSCACertificateFile    /opt/openldap/etc/openldap/cacert.pem

 

Or just try and rename

 

#

# Database Directory

#

directory       /opt/openldap/var/ldap-data

 

to

 

#

# Database Directory

#

directory       /opt/openldap/var/bdb-data

 

slapd just won't start. I can however change the default password without any issues. Has anyone experienced a similar problem? I've gone through the faq's, but my gut says this is a permissions problem?

 

Tia

 

ed

What is the message in the log file ?
Which user does run slapd as ('-u' option) ? 'ldap' user ? Who is the owner of ldap-data and files whithin, what are the perms on certificates files ?
One problem I encountered was that if you create databases with slapadd, logged as root, databases are created owned by root, so you got to change the owner to, say, ldap user, if it's the user you run the slapd daemon as.