[Date Prev][Date Next] [Chronological] [Thread] [Top]

TLS error - TLS accept failure error=1

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: TLS error - TLS accept failure error=1
From: cbulist <cbulist@gmail.com>
Date: Thu, 06 Sep 2012 10:53:22 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=YtGa3eV7x5uYBbaXn+cbMqha+AacnC3Hdw5bSdB+QVc=; b=GzEZplKQEt9cs10ueW6oOMQRd3HWtMQgD79ydgfI/gT0Ktc81FcdmfWnPYVmWoK0C0 hbG90G4JyR2GPKjKnHBn6Ns5jOh+d8kRsvGMOkhLC2iwqdLU+S4amCd9qmJrMtGya0oD pkUZ0RSsQEsB6JWEXBi/HEhFvfrY6Gaq+IAZJD3JJa9ktnxYfbtbAMjsZxlSAVDb045O nBsZB88Jmiq+LqW7qk+QypOaEbZUiBAcF4a727P29/1RWuU6tuB8XHApaUfrtf+Hici6 7qrVIShF/mqDBbzIqSf1ZVcdsME0ahdoKgUnhrpihNm0FzrePuLp3CRi5AGrgDMd/0CJ dcGA==
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Fedora/3.1.16-1.fc14 Thunderbird/3.1.16

Hi,

I have problem configuring TLS in my server (2.4.23).

I got the error TLS accept failure error=1 when a client tries to log inusing ssh.But if I do a ldapsearch from the client machine to the server I don'thave problem and I get the answer from the server:

ldapsearch -x -H ldaps://serverldap -D "cn=Manager,dc=sample,dc=com" -W-b "dc=sample,dc=com" 'uid=user1'


These are my config files:

The client ldap.conf:

URI ldaps://serverldap
BASE dc=sample,dc=com
TLS_CACERT /etc/openldap/cacerts/server.pem

The server slapd.conf
TLSCACertificateFile /etc/openldap/certs/server.pem
TLSCertificateFile /etc/openldap/certs/server.pem
TLSCertificateKeyFile /etc/openldap/certs/server.pem

The /etc/sysconfig/ldap.conf

SLAPD_LDAPS=yes

Any help?

Thanks!

Prev by Date: Re: Editing the olcAccess
Next by Date: Roles in OpenLDAP with back-sql
Index(es):
- Chronological
- Thread