[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: slapd.conf

Hi found this in the logs, will keep looking


main: TLS init def ctx failed: -1


-----Original Message-----
From: owner-openldap-software@OpenLDAP.org [mailto:owner-openldap-software@OpenLDAP.org] On Behalf Of Alexandre Garel
Sent: 20 July 2004 04:12
To: openldap-software@OpenLDAP.org
Subject: Re: slapd.conf


Edward de Jongh a écrit :

Hi all I've managed to install OpenSSL for TLS and the install seemed to go without a hitch. I've now come across a new problem. No matter what changes I make to the slapd.conf, slapd will not start. So whether I add new values such as:



# TLS Security Configuration


TLSCertificateFile      /opt/openldap/etc/openldap/ldap_crt.pem

TLSCertificateKeyFile   /opt/openldap/etc/openldap/ldap_crt.pem

TLSCACertificateFile    /opt/openldap/etc/openldap/cacert.pem


Or just try and rename



# Database Directory


directory       /opt/openldap/var/ldap-data





# Database Directory


directory       /opt/openldap/var/bdb-data


slapd just won't start. I can however change the default password without any issues. Has anyone experienced a similar problem? I've gone through the faq's, but my gut says this is a permissions problem?





What is the message in the log file ?
Which user does run slapd as ('-u' option) ? 'ldap' user ? Who is the owner of ldap-data and files whithin, what are the perms on certificates files ?
One problem I encountered was that if you create databases with slapadd, logged as root, databases are created owned by root, so you got to change the owner to, say, ldap user, if it's the user you run the slapd daemon as.