[Date Prev][Date Next]
Re: Problem with SSL enabled slapd
On Sunday 17 November 2002 14:19, Dunk Chen wrote:
> I want to enable ssl supported on slapd.
> Following the reference I've got. I modified the slapd.conf with three
> lines as follows:
> TLSCipherSuite HIGH:MEDIUM:+SSLv2
> TLSCertificateFile /usr/share/ssl/certs/slapd.pem
> TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem
> But..... I can't start my slapd anymore. The slapd just exited
> immediately when I start by command ./slapd -h "ldaps://127.0.0.1/".
> ps. I can normally start up my slapd without extra ssl configuration.
If you have OpenLDAP 2.1.x don't use a self signed server certificate.
Instead, use a self signed CA certificate and a separate server certificate
that is signed by the CA certificate.
Peter Marschall | eMail: email@example.com
Scheffelstraße 15 | firstname.lastname@example.org
97072 Würzburg | Tel: 0931/14721
PGP: D7 FF 20 FE E6 6B 31 74 D1 10 88 E0 3C FE 28 35