Hi,
I'm setting up a new instance of openldap, and I'm running into error (80) when trying to add new certificates. I've checked for the usual suspects: - certs in PEM format - file permissions along the path OK
I'm using Symas' CentOS 7 repo: slapd 2.4.50 (Apr 28 2020 21:18:35) I've enabled debugging on the server (logs attached), but can't get anything out of it.
Any pointers are appreciated.
Regards, Sami
--On Wednesday, July 8, 2020 4:25 PM +0100 Sami Ait Ali Oulahcen sami@marwan.ma wrote:
I'm using Symas' CentOS 7 repo: slapd 2.4.50 (Apr 28 2020 21:18:35) I've enabled debugging on the server (logs attached), but can't get anything out of it.
What debug level did you use to generate the log?
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
Hi Quanah,
It was -1.
R's Sami
On Jul 8, 2020, at 5:52 PM, Quanah Gibson-Mount quanah@symas.com wrote:
--On Wednesday, July 8, 2020 4:25 PM +0100 Sami Ait Ali Oulahcen sami@marwan.ma wrote:
I'm using Symas' CentOS 7 repo: slapd 2.4.50 (Apr 28 2020 21:18:35) I've enabled debugging on the server (logs attached), but can't get anything out of it.
What debug level did you use to generate the log?
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Wednesday, July 8, 2020 6:58 PM +0100 Sami Ait Ali Oulahcen sami@marwan.ma wrote:
Hi Quanah,
It was -1.
Ok, there's definitely an issue somewhere there with your certs. Other permission type things to check include selinux/apparmor etc.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
I totally missed that. It was indeed selinux. After fixing the security context of the certs, all is working now. Thanks Quanah ! If you don't mind me asking, which part of the log gives that up ?
Sami
On 09/07/2020 12:59 am, Quanah Gibson-Mount wrote:
--On Wednesday, July 8, 2020 6:58 PM +0100 Sami Ait Ali Oulahcen sami@marwan.ma wrote:
Hi Quanah,
It was -1.
Ok, there's definitely an issue somewhere there with your certs. Other permission type things to check include selinux/apparmor etc.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Thursday, July 9, 2020 2:26 PM +0100 Sami Ait Ali Oulahcen sami@marwan.ma wrote:
I totally missed that. It was indeed selinux. After fixing the security context of the certs, all is working now. Thanks Quanah ! If you don't mind me asking, which part of the log gives that up ?
Nothing in the log provided any indication of what specifically the problem was. It was an educated guess based off of past reports. ;)
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org