[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd stopped after i cofigured TLS in slapd.conf

To: Manila Chhotray <lipeehere@yahoo.co.in>
Subject: Re: slapd stopped after i cofigured TLS in slapd.conf
From: Pierangelo Masarati <ando@sys-net.it>
Date: Sat, 04 Dec 2004 10:44:29 +0100
Cc: openldap-BUGS@OpenLDAP.org
References: <20041204091958.7794.qmail@web8508.mail.in.yahoo.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20021003

Manila Chhotray wrote:

Hi, I want to configure TLS on OpenLDAp for which I creaed server certificate , signed it with CA Certificate and then configured slap.conf with the TLS options.The errors I got are ..... ---------------------------------------------------------------------------------------------------------------- TLS: could not load verify locations (file:`C:openldapvaropenldap-datacacert.pem ',dir:`'). TLS: error:02001002:system library:fopen:No such file or directory bss_file.c:104 TLS: error:2006D080:BIO routines:BIO_new_file:no such file bss_file.c:107 TLS: error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib by_file.c:274 main: TLS init def ctx failed: -1 slapd shutdown: freeing system resources. slapd stopped. connections_destroy: nothing to destroy. --------------------------------------------------------- I hav e configured my slapd.conf as ucdata-path C:/openldap/ucdata include C:/openldap/etc/schema/core.schema include C:/openldap/etc/schema/misc.schema pidfile C:/openldap/var/slapd.pid argsfile C:/openldap/var/slapd.args TLSCipherSuite HIGH:MEDIUM:+SSLv2 TLSCACertificateFile C:\openldap\var\openldap-data\cacert.pem TLSCertificateFile C:\openldap\var\openldap-data\SSL_ServerCert.pem TLSCertificateKeyFile C:\openldap\var\openldap-data\ServerKey.pem TLSVerifyClient never database bdb suffix "dc=SecretWriters,dc=com" rootdn "cn=SecretWriters,dc=SecretWriters,dc=com" ---------------------------------------------------------------------------------------------------------------- The server certificate's common name is also SecretWriters.com The libssl.dll is also available at home diretory of the openldap.This is a window version of openldap server. Please help . regards, Manila Chhotray

I have never considered building and using slapd with windows (I infer you're doing so from your path names, although you don't specify software version, OS, OS version and other useful info when addressing problems), but the error message realy looks straightforward: the file name slapd is trying to open doesn't look like what you might expect. Apparently, slapd interprets the '\' you use to separate TLS related paths as an escape char, as intended. I don't understand why you use the '/' for included paths and the '\' for TLS related files. Please check.

p.

   SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

References:
- slapd stopped after i cofigured TLS in slapd.conf
  - From: Manila Chhotray <lipeehere@yahoo.co.in>

Prev by Date: slapd stopped after i cofigured TLS in slapd.conf
Next by Date: [Fwd: Re: slapd locks up on modify op (ITS#3365)]
Index(es):
- Chronological
- Thread