Jonas Kellens wrote:
I am trying to configure openLDAP on Centos 6.8 with SSL.
Note that OpenLDAP builds on RHEL/CentOS are linked against libnss and
you likely have to deal with certutil to prepare the cert and key DB.
My /etc/openldap/slapd.conf file has the following lines :
Unfortunately, even though the config directives use the very same
names, they have different meaning when linked against libnss.
Personally I consider this as a serious design flaw of the libnss support.
Example (from my memory):
# *directory* with libnss DB files
# key alias used for server key
# pass-phrase file for using key DB file