On Fri, Sep 25, 2009 at 7:54 AM, FRLinux frlinux@gmail.com wrote:
On Thu, Sep 24, 2009 at 10:51 AM, FRLinux frlinux@gmail.com wrote:
Hello, I am back again on that one as I cannot get it to work.
I am getting:
main: TLS init def ctx failed: 1 slapd destroy: freeing system resources. slapd stopped. connections_destroy: nothing to destroy.
This is my replication config on the slave (2.4 on Debian):
syncrepl rid=124 \ provider=ldaps://masterldap.example.com:636 \ type=refreshAndPersist \ searchbase="dc=example,dc=com" \ scope=sub \ filter="(objectClass=*)" \ attrs="*" \ schemachecking=off \ tls_cacert=/etc/ldap/cert/cacert.pem \ bindmethod=sasl \ saslmech=GSSAPI \ binddn="cn=LDAPReplicator,dc=example,dc=com" \ credentials=xxxxxx
Anything I might be doing wrong?
Anyone please?
I have tried many options on saslmech, etc... and still cannot use ssl directly on port 636 using the new syncrepl options (where you specify your certs straight in the syncrepl section).
So, am I right in the following assumption that syncrepl now only supports TLS instead of plain old SSL ?
Please respond to this, I need to get this working...
Cheers, Steph
--On Thursday, October 29, 2009 1:09 AM +0000 FRLinux frlinux@gmail.com wrote:
So, am I right in the following assumption that syncrepl now only supports TLS instead of plain old SSL ?
No, that assumption is not correct. There's something blocking your SSL usage, but I don't have the details in your email to know why.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
openldap-software@openldap.org
-
FRLinux -
Quanah Gibson-Mount