[Date Prev][Date Next] [Chronological] [Thread] [Top]

Openldap slapd server -> TLS: could not use key file ????



I am trying to start the slapd server with SSl/TSL support on both ports 389
and 636 with:

slapd -d 255 -f /etc/openldap/slapd.conf -h ldap:/// -h ldaps:///

But after parsing all the ldap schemes (correct), then here is what happens.

......
line 71 (TLSCertificateFile      /etc/openldap/myServer.pem)
line 72 (TLSCertificateKeyFile   /etc/openldap/myServer.pem)
line 73 (TLSCACertificateFile    /etc/openldap/myServer.pem)
TLS: could not use key file `/etc/openldap/reefedgeServer.pem'.
TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:662
TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:662
TLS: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:missing asn1
eos ssl_rsa.c:707
slapd shutdown: freeing system resources.
slapd stopped.
connections_destroy: nothing to destroy.

About myServer.pem, it has been generated by:

openssl req -new -x509 -nodes -out myServer.pem

and placed in /etc/openldap/slapd.conf

Any idea ?
Thanks.

Yves