[Date Prev][Date Next] [Chronological] [Thread] [Top]

Problems with the secure replication



Hi,
I have some trouble with the secure replication.

Master# /usr/local/libexec/slapd -h "ldaps:/// ldap:///";
Slave#  /usr/local/libexec/slapd -h "ldaps:/// ldap:///"; -d 8
    TLS: can't accept.
    TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown
protocol s23_srvr.c:565

Master# /usr/local/libexec/slurpd -d 64
    Warning: ldap_start_tls failed: Can't contact LDAP server (81)
    ber_flush: 7 bytes to sd 5

The Masters slapd.conf is as follows:

include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/inetorgperson.schema

pidfile         /var/ldap/slapd.pid
argsfile        /var/ldap/slapd.args

TLSCertificateFile      /etc/openldap/server.pem
TLSCertificateKeyFile   /etc/openldap/server.pem
TLSCACertificateFile    /etc/openldap/server.pem

#######################################################################
# ldbm database definitions
#######################################################################

database        ldbm
suffix          "dc=informatik,dc=uni-bremen,dc=de"
rootdn          "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
rootpw          secret
directory       /var/ldap/openldap-ldbm
replica host=slave.informatik.uni-bremen.de:636
        binddn="cn=admin,dc=informatik,dc=uni-bremen,dc=de"
        bindmethod=simple
        credentials=secret
        tls=yes
replogfile      /var/ldap/replog.log
# Indices to maintain
index   objectClass     eq


And this is my slave-slapd.conf

include         /etc/openldap/schema/core.schema
include         /etc/openldap/schema/cosine.schema
include         /etc/openldap/schema/nis.schema
include         /etc/openldap/schema/inetorgperson.schema

pidfile         /var/ldap/slapd.pid
argsfile        /var/ldap/slapd.args

TLSCertificateFile      /etc/openldap/server.pem
TLSCertificateKeyFile   /etc/openldap/server.pem
TLSCACertificateFile    /etc/openldap/server.pem

#######################################################################
# ldbm database definitions
#######################################################################

database        ldbm
suffix          "dc=informatik,dc=uni-bremen,dc=de"
rootdn          "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
rootpw          secret
directory       /var/ldap/openldap-ldbm
updatedn        "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
updateref       ldaps://master.informatik.uni-bremen.de:636
# Indices to maintain
index   objectClass     eq


What is wrong?
Thanks in advance

Cemil