On Fri, Sep 25, 2009 at 7:54 AM, FRLinux frlinux@gmail.com wrote:
On Thu, Sep 24, 2009 at 10:51 AM, FRLinux frlinux@gmail.com wrote:
Hello, I am back again on that one as I cannot get it to work.
I am getting:
main: TLS init def ctx failed: 1 slapd destroy: freeing system resources. slapd stopped. connections_destroy: nothing to destroy.
This is my replication config on the slave (2.4 on Debian):
syncrepl rid=124 \ provider=ldaps://masterldap.example.com:636 \ type=refreshAndPersist \ searchbase="dc=example,dc=com" \ scope=sub \ filter="(objectClass=*)" \ attrs="*" \ schemachecking=off \ tls_cacert=/etc/ldap/cert/cacert.pem \ bindmethod=sasl \ saslmech=GSSAPI \ binddn="cn=LDAPReplicator,dc=example,dc=com" \ credentials=xxxxxx
Anything I might be doing wrong?
Anyone please?
I have tried many options on saslmech, etc... and still cannot use ssl directly on port 636 using the new syncrepl options (where you specify your certs straight in the syncrepl section).
So, am I right in the following assumption that syncrepl now only supports TLS instead of plain old SSL ?
Please respond to this, I need to get this working...
Cheers, Steph