--On Friday, June 28, 2019 7:33 PM -0300 Igor Sousa igorvolt@gmail.com wrote:
dn: cn=config changetype: modify replace: olcTLSCertificateFile olcTLSCertificateFile: /etc/openldap/certs/ldap.local.crt
replace: olcTLSCertificateKeyFile olcTLSCertificateKeyFile: /etc/openldap/certs/ldap.local.key
add: olcTLSCACertificateFile olcTLSCACertificateFile: /etc/openldap/certs/ca.cert.pem
I would suggest simply using the same filenames as you had before, negating the need to modify the attributes at all. You're likely hitting ITS#8286 with the replace operations. Another idea may be to change replace to a delete+add in the same operation sequence.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com