On Tue, 2008-07-08 at 16:45 -0400, Sambuddho Chakravarty wrote:
Hello Pat I think I am . I did apt-get update and tried a apt-get install libnss-ldap and it said you already have the latest packages.
Ok, one more thing to check what does the output of
apt-get -f dist-upgrade
report?
Pat
Thanks Sambuddho On Tue, 2008-07-08 at 15:39 -0500, Pat Riehecky wrote:
On Tue, 2008-07-08 at 00:06 -0400, Sambuddho Chakravarty wrote:
Hello I have an openldap server running slapd on 636 (LDAPS) . When I connect from a ldap browser , I am able to successfully browse the database. However when I try to connect from a linux client machine (Ubuntu Server 8.04) I am not able to connect to the ldaps. However regular ldap works fine.
There was a problem with the original 8.04 ldap packages (I think it was actually gnutls related but memory fails). Are you on the latest and greatest packages?
Pat
Hello Pat This is what the outptut look like
Reading package lists... Done Building dependency tree Reading state information... Done Calculating upgrade... Done The following NEW packages will be installed: linux-image-2.6.24-19-server linux-ubuntu-modules-2.6.24-19-server openssh-blacklist The following packages will be upgraded: apache2-mpm-prefork apache2-utils apache2.2-common apparmor apparmor-utils base-files bash bsdutils dpkg file friendly-recovery initramfs-tools klibc-utils ldap-utils libdbus-1-3 libglib2.0-0 libgnutls13 libklibc libldap-2.4-2 libmagic1 libntfs-3g23 libpam-modules libpam-runtime libparted1.7-1 linux-image-server linux-libc-dev linux-server lshw mount ntfs-3g openssh-client openssh-server parted pciutils python-central sudo tzdata ufw update-manager-core util-linux util-linux-locales x11-common 42 upgraded, 3 newly installed, 0 to remove and 0 not upgraded. Need to get 36.9MB of archives. After this operation, 82.0MB of additional disk space will be used. Do you want to continue [Y/n]?
Also I compiled the openldap-2.4.10 source code on the client (just to make sure that if there were some missing libraries , which were present in the server otherwise). But problem still persists. There is a new log message I see now
pam_ldap:ldap_set_option(LDAP_OPT_X_TLS_CACERTFILE): Can't contact LDAP server pam_ldap: _set_ssl_default_options failed pam_ldap: ldap_set_option(LDAP_OPT_X_TLS) Can't contact LDAP server
Thanks Sambuddho
Thanks Sambuddho
n On Tue, 2008-07-08 at 15:51 -0500, Pat Riehecky wrote:
On Tue, 2008-07-08 at 16:45 -0400, Sambuddho Chakravarty wrote:
Hello Pat I think I am . I did apt-get update and tried a apt-get install libnss-ldap and it said you already have the latest packages.
Ok, one more thing to check what does the output of
apt-get -f dist-upgrade
report?
Pat
Thanks Sambuddho On Tue, 2008-07-08 at 15:39 -0500, Pat Riehecky wrote:
On Tue, 2008-07-08 at 00:06 -0400, Sambuddho Chakravarty wrote:
Hello I have an openldap server running slapd on 636 (LDAPS) . When I connect from a ldap browser , I am able to successfully browse the database. However when I try to connect from a linux client machine (Ubuntu Server 8.04) I am not able to connect to the ldaps. However regular ldap works fine.
There was a problem with the original 8.04 ldap packages (I think it was actually gnutls related but memory fails). Are you on the latest and greatest packages?
Pat
I would strongly recommend installing the updates. At the minimum you should install openssh-* apache2-* apparmor* dpkg libgnutls13 ufw libldap*. I would strongly recommend installing all of these updates as several are security related. In any case, the updates may help fix your system. I know the gnutls library contains a fix for you, perhaps not for a bug you have, but nonetheless a fix is a fix.
Pat
On Tue, 2008-07-08 at 17:06 -0400, Sambuddho Chakravarty wrote:
Hello Pat This is what the outptut look like
Reading package lists... Done Building dependency tree Reading state information... Done Calculating upgrade... Done The following NEW packages will be installed: linux-image-2.6.24-19-server linux-ubuntu-modules-2.6.24-19-server openssh-blacklist The following packages will be upgraded: apache2-mpm-prefork apache2-utils apache2.2-common apparmor apparmor-utils base-files bash bsdutils dpkg file friendly-recovery initramfs-tools klibc-utils ldap-utils libdbus-1-3 libglib2.0-0 libgnutls13 libklibc libldap-2.4-2 libmagic1 libntfs-3g23 libpam-modules libpam-runtime libparted1.7-1 linux-image-server linux-libc-dev linux-server lshw mount ntfs-3g openssh-client openssh-server parted pciutils python-central sudo tzdata ufw update-manager-core util-linux util-linux-locales x11-common 42 upgraded, 3 newly installed, 0 to remove and 0 not upgraded. Need to get 36.9MB of archives. After this operation, 82.0MB of additional disk space will be used. Do you want to continue [Y/n]?
Also I compiled the openldap-2.4.10 source code on the client (just to make sure that if there were some missing libraries , which were present in the server otherwise). But problem still persists. There is a new log message I see now
pam_ldap:ldap_set_option(LDAP_OPT_X_TLS_CACERTFILE): Can't contact LDAP server pam_ldap: _set_ssl_default_options failed pam_ldap: ldap_set_option(LDAP_OPT_X_TLS) Can't contact LDAP server
Thanks Sambuddho
Thanks Sambuddho
n On Tue, 2008-07-08 at 15:51 -0500, Pat Riehecky wrote:
On Tue, 2008-07-08 at 16:45 -0400, Sambuddho Chakravarty wrote:
Hello Pat I think I am . I did apt-get update and tried a apt-get install libnss-ldap and it said you already have the latest packages.
Ok, one more thing to check what does the output of
apt-get -f dist-upgrade
report?
Pat
Thanks Sambuddho On Tue, 2008-07-08 at 15:39 -0500, Pat Riehecky wrote:
On Tue, 2008-07-08 at 00:06 -0400, Sambuddho Chakravarty wrote:
Hello I have an openldap server running slapd on 636 (LDAPS) . When I connect from a ldap browser , I am able to successfully browse the database. However when I try to connect from a linux client machine (Ubuntu Server 8.04) I am not able to connect to the ldaps. However regular ldap works fine.
There was a problem with the original 8.04 ldap packages (I think it was actually gnutls related but memory fails). Are you on the latest and greatest packages?
Pat
openldap-technical@openldap.org
-
Pat Riehecky -
Sambuddho Chakravarty