[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL / External, slapd won't start since I have a new dn in my certs

Hello all

I want my certs to have a dn of the form 
dc=local,dc=enatel,cn=server.enatel.local for the server
dc=local,dc=enatel,ou=people,cn=francois for the users

so I changed my openssl.cnf, and generated such valid certificates
(I checked it with openssl)

but now my slapd starting failed, with this error in the log :

main: TLS init def ctx failed: -1

And it starts with certs dn of the form c=fr,o=enatel,...

My slapd base dn is dc=enatel,dc=local
Can't I have the same base for the slapd cert dn ?