[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?

To: "Howard Chu" <hyc@symas.com>
Subject: Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
From: "Ben Wailea, openldap-software" <bwailea+10@gmail.com>
Date: Fri, 15 Aug 2008 16:26:07 -0700
Cc: openldap-software@openldap.org, Philip Guenther <guenther+ldapsoft@sendmail.com>
Content-disposition: inline
In-reply-to: <48A60834.8050201@symas.com>
References: <382b79dc0808151028p2d7aedd8o438caf43b525cf02@mail.gmail.com> <alpine.BSO.1.10.0808151626550.1036@vanye.mho.net> <48A60834.8050201@symas.com>

On Fri, Aug 15, 2008 at 3:50 PM, Howard Chu <hyc@symas.com> wrote:
> Most likely a file permissions error; he said he's using the same cert/key
> file as for his Apache server, but most likely the key file is not readable
> by the ldap user.

msgs crossed in the mail, but seems to be the case.

again, any issues/problems running openldap as ldap:root, or root:root?

or is it 'better' to just make copies of the certs, chown the copies
to ldap:ldap, and live with multiple instances?

Follow-Ups:
- Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
  - From: Howard Chu <hyc@symas.com>

References:
- openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
  - From: "Ben Wailea, openldap-software" <bwailea+10@gmail.com>
- Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
  - From: Philip Guenther <guenther+ldapsoft@sendmail.com>
- Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
Next by Date: Re: openldap failing to launch if SSL/TLS enabled. error "main: TLS init def ctx failed: -1" ?
Index(es):
- Chronological
- Thread