I am still attempting to implement TLS connections on my system. When using my new certificates I get this startup error and the LDAP servier will not start main: TLS init def ctx failed: -1
what exactly does this mean? Jon West
--On June 19, 2007 4:36:58 PM -0400 "West, Jon (NIH/NIMH) [C]" wjon@mail.nih.gov wrote:
I am still attempting to implement TLS connections on my system. When using my new certificates I get this startup error and the LDAP servier will not start main: TLS init def ctx failed: -1
Probably that you failed to specify the CA Cert for your cert. Did you try running slapd -d -1?
--Quanah
-- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
No I did not try that, but I have all my error log information output to a file, so when I made the change I set the log level to -1 and that is the only error message I received regarding TLS, there were no other errors that aren't there during normal startup. I am fairly certain the information pointing to the CA is included
-----Original Message----- From: Quanah Gibson-Mount [mailto:quanah@zimbra.com] Sent: Tuesday, June 19, 2007 5:23 PM To: West, Jon (NIH/NIMH) [C]; openldap-software@openldap.org Subject: Re: main: TLS init def ctx failed: -1
--On June 19, 2007 4:36:58 PM -0400 "West, Jon (NIH/NIMH) [C]" wjon@mail.nih.gov wrote:
I am still attempting to implement TLS connections on my system. When using my new certificates I get this startup error and the LDAP
servier
will not start main: TLS init def ctx failed: -1
Probably that you failed to specify the CA Cert for your cert. Did you try running slapd -d -1?
--Quanah
-- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
--On Thursday, June 21, 2007 3:18 PM -0400 "West, Jon (NIH/NIMH) [C]" wjon@mail.nih.gov wrote:
No I did not try that, but I have all my error log information output to a file, so when I made the change I set the log level to -1 and that is the only error message I received regarding TLS, there were no other errors that aren't there during normal startup. I am fairly certain the information pointing to the CA is included
So, the answer is, you don't know if you have? I suggest reading the man page for slapd.conf(5) then, and reading over the various options for setting the CA, and then validating that they are set in your slapd.conf file...
--Quanah
-- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
openldap-software@openldap.org
-
Quanah Gibson-Mount -
West, Jon (NIH/NIMH) [C]