[Date Prev][Date Next] [Chronological] [Thread] [Top]

Replication with SSL/TLS

I'm trying to achieve replication via port 636, specifying tls=yes in
the master slapd.conf, but the slave complains with 

TLS trace: SSL_accept:error in SSLv2/v3 read client hello A
TLS: can't accept.
TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol

Presumably with replication the master is the client and needs the
slave's certificate. This is held in /path/to/cert7.db , but how is
replication made aware of the certificate db path?

Dave Lewney
Principal Systems Programmer, Computing Service
University of Sussex, Brighton BN1 9QJ. Tel: 01273 678354 Fax: 01273