Hi,
I want to configure TLS on OpenLDAp for which I creaed server certificate , signed it with CA Certificate and then configured slap.conf with the TLS options.The errors I got are .....
----------------------------------------------------------------------------------------------------------------
TLS: could not load verify locations (file:`C:openldapvaropenldap-datacacert.pem
',dir:`').
TLS: error:02001002:system library:fopen:No such file or directory bss_file.c:104
TLS: error:2006D080:BIO routines:BIO_new_file:no such file bss_file.c:107 TLS: error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib by_file.c:274 main: TLS init def ctx failed: -1
slapd shutdown: freeing system resources.
slapd stopped.
connections_destroy: nothing to destroy.
---------------------------------------------------------
I hav e configured my slapd.conf as
ucdata-path C:/openldap/ucdata
include C:/openldap/etc/schema/core.schema
include C:/openldap/etc/schema/misc.schema
pidfile C:/openldap/var/slapd.pid
argsfile C:/openldap/var/slapd.args
TLSCipherSuite HIGH:MEDIUM:+SSLv2
TLSCACertificateFile C:\openldap\var\openldap-data\cacert.pem
TLSCertificateFile C:\openldap\var\openldap-data\SSL_ServerCert.pem
TLSCertificateKeyFile C:\openldap\var\openldap-data\ServerKey.pem
TLSVerifyClient never
database bdb
suffix "dc=SecretWriters,dc=com"
rootdn "cn=SecretWriters,dc=SecretWriters,dc=com"
----------------------------------------------------------------------------------------------------------------
The server certificate's common name is also SecretWriters.com
The libssl.dll is also available at home diretory of the openldap.This is a window version of openldap server.
Please help .
regards,
Manila Chhotray
Softprosys limited
Hyderabad.
India
India