[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Client says Can't contact LDAP server, but it can!

To: openldap-technical@openldap.org
Subject: Re: Client says Can't contact LDAP server, but it can!
From: Jeroen van Aart <kroshka@atypon.com>
Date: Mon, 28 Jul 2008 18:16:32 -0700
In-reply-to: <7F1A9AA5DE4ACAAF88BBC2A1@[192.168.1.199]>
References: <20080721153002.GA12884@ns.sdsitehosting.net> <200807251021.05245.bgmilne@staff.telkomsa.net> <20080725151612.GC29344@ns.sdsitehosting.net> <200807280920.33142.bgmilne@staff.telkomsa.net> <20080728183054.GA23107@ns.sdsitehosting.net> <488E17D4.1080001@symas.com> <20080728194426.GC29821@ns.sdsitehosting.net> <7F1A9AA5DE4ACAAF88BBC2A1@[192.168.1.199]>
User-agent: Icedove 1.5.0.14eol (X11/20080509)

Quanah Gibson-Mount wrote:

--On Monday, July 28, 2008 12:44 PM -0700 John Oliver <joliver@john-oliver.net> wrote:

I do appreciate all of the help, and apologize if I seem dense. I know

You continue to do things incorrectly, and be unhappy when they don't work because of it. Again, to set up your LDAP servers *correctly* with

At some point I created a small script to generate self signed certificates. Mostly for Apache2's sake. But of course this works for anything needing a certificate. Apache's site has very useful documentation: http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#ownca

#!/bin/sh # # JvA # Generate self sgined certificate # And remove the passphrase (so services will start without prompting for a password) # # Takes one argument, the name of the key

# check if any argument has been given, if not exit
if test -z "$1"
then
    echo 'Please give the name of the key, exiting...'
    exit
fi

echo "Generating key..."
openssl genrsa -des3 -out $1.key 1024
echo ""
echo "Generating self signed certificate..."
openssl req -new -x509 -nodes -sha1 -days 999 -key $1.key -out $1.crt

# Remove passphrase
echo ""
echo "Removing passphrase..."
openssl rsa -in $1.key -out $1.key

# Display results
echo ""
echo "Displaying details..."
openssl x509 -noout -text -in $1.crt

echo "Check the file permissions and make sure "$1".key is only readable by root and if necessary the system account using it." chmod a-r,u+r $1.key ls -l $1.key ls -l $1.crt

References:
- Client says Can't contact LDAP server, but it can!
  - From: John Oliver <joliver@john-oliver.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: John Oliver <joliver@john-oliver.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: John Oliver <joliver@john-oliver.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: Howard Chu <hyc@symas.com>
- Re: Client says Can't contact LDAP server, but it can!
  - From: John Oliver <joliver@john-oliver.net>
- Re: Client says Can't contact LDAP server, but it can!
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: Client says Can't contact LDAP server, but it can!
Next by Date: Re: Client says Can't contact LDAP server, but it can!
Index(es):
- Chronological
- Thread