[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS failure when running OpenLDAP 2.3.30 on Debian 4.0

To: Erling Ringen Elvsrud <systemansvarlig@vagaungdomsskule.no>, openldap-software@openldap.org
Subject: Re: TLS failure when running OpenLDAP 2.3.30 on Debian 4.0
From: Quanah Gibson-Mount <quanah@zimbra.com>
Date: Fri, 10 Aug 2007 10:08:48 -0700
Content-disposition: inline
In-reply-to: <1186735002.5656.6.camel@skarphedin.intern.vagaungdomsskule.no>
References: <1186735002.5656.6.camel@skarphedin.intern.vagaungdomsskule.no>

--On August 10, 2007 10:36:42 AM +0200 Erling Ringen Elvsrud <systemansvarlig@vagaungdomsskule.no> wrote:

Hello,

I just upgraded to Debian 4.0 and OpenLDAP 2.3.30 and have some problems
starting slapd afterwards.

With TLS enabled I get this output in syslog when
running /etc/init.d/slapd start:

Aug 10 10:27:43 localhost slapd[10057]: daemon: IPv6 socket() failed
errno=97 (Address family not supported by protocol)
Aug 10 10:27:43 localhost slapd[10057]: /etc/ldap/slapd.access: line 11:
rootdn is always granted unlimited privileges.
Aug 10 10:27:46 localhost slapd[10057]: main: TLS init def ctx failed:
-1
Aug 10 10:27:46 localhost slapd[10057]: slapd stopped.
Aug 10 10:27:46 localhost slapd[10057]: connections_destroy: nothing to
destroy.

If I disable TLS slapd starts without any errors. Any clue what the
"main: TLS init def ctx failed:" means is appreciated.

It almost always means either the cert/key pointed to in slapd.conf doesn't exist, or is not readable by the slapd user.

--Quanah

--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration

References:
- TLS failure when running OpenLDAP 2.3.30 on Debian 4.0
  - From: Erling Ringen Elvsrud <systemansvarlig@vagaungdomsskule.no>

Prev by Date: Re: Problems changing passwords
Next by Date: Re: TLS failure when running OpenLDAP 2.3.30 on Debian 4.0
Index(es):
- Chronological
- Thread