[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP and SSL

To: Chasecreek Systemhouse <chasecreek.systemhouse@gmail.com>, openldap-software@OpenLDAP.org
Subject: Re: LDAP and SSL
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Sun, 28 Nov 2004 13:33:16 -0800
Content-disposition: inline
In-reply-to: <91f88ee204112810284d745e7f@mail.gmail.com>
References: <91f88ee204112810284d745e7f@mail.gmail.com>

--On Sunday, November 28, 2004 1:28 PM -0500 Chasecreek Systemhouse <chasecreek.systemhouse@gmail.com> wrote:

Please excuse this newbie post.

I have read the docs at
http://www.openldap.org/faq/data/cache/185.html

After a weeks testing I still cannot understand why my LDAPS server
doesnt work.

My question is two parts --

1st, is there anyone on this list that can give me a better idea of
what to research to get it to work?  I have ldap:/// and ldapi:///
working -- but I only need ldaps:/// to work (over the public
Internet.)  I set -h "ldaps:///" in /etc/ldap/slapd.conf

2nd, is anyone on this list actually using LDAPS and would be willing
to show me a solution path.

Currently the LDAPS doesnt start and
          openssl rsa -in newcert.pem -text -noout
States that it cannot load the Private Key.

If the openssl command is having issues with your cert & key, then you have issues that go beyond the LDAP area, and you need to ask for help from the OpenSSL community.

As a note, I'd guess that either the path to your CA is missing, or the private key for your cert is not contained in the PEM file you are using.

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

Follow-Ups:
- Re: LDAP and SSL
  - From: Chasecreek Systemhouse <chasecreek.systemhouse@gmail.com>

References:
- LDAP and SSL
  - From: Chasecreek Systemhouse <chasecreek.systemhouse@gmail.com>

Prev by Date: LDAP and SSL
Next by Date: Re: LDAP and SSL
Index(es):
- Chronological
- Thread