15 Dec
2023
15 Dec
'23
2:45 a.m.
On debian, /etc/ssl/private is only readable by root and members of ssl-cert.
You ćan either add your openldap user to this group or move your certificate to /etc/ldap.
Best regards
Ulf
Yes, and I believe it was different with Stretch version. We checked permission with su on openldap account(temporarily replace /bin/false with /bin/bash), and solved issue.
Thank you for your help!