[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Problems with the secure replication
Hi,
I have some trouble with the secure replication.
Master# /usr/local/libexec/slapd -h "ldaps:/// ldap:///"
Slave# /usr/local/libexec/slapd -h "ldaps:/// ldap:///" -d 8
TLS: can't accept.
TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown
protocol s23_srvr.c:565
Master# /usr/local/libexec/slurpd -d 64
Warning: ldap_start_tls failed: Can't contact LDAP server (81)
ber_flush: 7 bytes to sd 5
The Masters slapd.conf is as follows:
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
pidfile /var/ldap/slapd.pid
argsfile /var/ldap/slapd.args
TLSCertificateFile /etc/openldap/server.pem
TLSCertificateKeyFile /etc/openldap/server.pem
TLSCACertificateFile /etc/openldap/server.pem
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
suffix "dc=informatik,dc=uni-bremen,dc=de"
rootdn "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
rootpw secret
directory /var/ldap/openldap-ldbm
replica host=slave.informatik.uni-bremen.de:636
binddn="cn=admin,dc=informatik,dc=uni-bremen,dc=de"
bindmethod=simple
credentials=secret
tls=yes
replogfile /var/ldap/replog.log
# Indices to maintain
index objectClass eq
And this is my slave-slapd.conf
include /etc/openldap/schema/core.schema
include /etc/openldap/schema/cosine.schema
include /etc/openldap/schema/nis.schema
include /etc/openldap/schema/inetorgperson.schema
pidfile /var/ldap/slapd.pid
argsfile /var/ldap/slapd.args
TLSCertificateFile /etc/openldap/server.pem
TLSCertificateKeyFile /etc/openldap/server.pem
TLSCACertificateFile /etc/openldap/server.pem
#######################################################################
# ldbm database definitions
#######################################################################
database ldbm
suffix "dc=informatik,dc=uni-bremen,dc=de"
rootdn "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
rootpw secret
directory /var/ldap/openldap-ldbm
updatedn "cn=admin,dc=informatik,dc=uni-bremen,dc=de"
updateref ldaps://master.informatik.uni-bremen.de:636
# Indices to maintain
index objectClass eq
What is wrong?
Thanks in advance
Cemil