[Date Prev][Date Next] [Chronological] [Thread] [Top]

Getting SSL/TSL to work



Hello,
This might be a bit off-topic since it may have more to do with openssl
than with OpenLDAP. Using some scripts/commands provided by
Apache/Gentoo I created certificates for my Apache server and https on
Apache is working without problems.
Now I'm trying to use that certificate for LDAP, I configured it this way:

TLSCipherSuite HIGH:MEDIUM
TLSCertificateFile /etc/certificates/server.crt
TLSCertificateKeyFile /etc/certificates/server.key

but when I start it I get the following messages:

Mar 10 16:56:13 master slapd[6814]: daemon: socket() failed errno=97
(Address family not supported by protocol)
Mar 10 16:56:13 master slapd[6814]: daemon: socket() failed errno=97
(Address family not supported by protocol)
Mar 10 16:56:13 master slapd[6814]: sql_select option missing
Mar 10 16:56:13 master slapd[6814]: auxpropfunc error no mechanism available
Mar 10 16:56:13 master slapd[6814]: _sasl_plugin_load failed on
sasl_auxprop_plug_init for plugin: sql
Mar 10 16:56:13 master slapd[6814]: bdb_initialize: Sleepycat Software:
Berkeley DB 4.1.25: (December 19, 2002)
Mar 10 16:56:13 master slapd[6814]: bdb_db_init: Initializing BDB database
Mar 10 16:56:13 master slapd[6814]: main: TLS init def ctx failed: -1
Mar 10 16:56:13 master slapd[6814]: slapd stopped.
Mar 10 16:56:13 master slapd[6814]: connections_destroy: nothing to destroy.

Can anybody give me some clue about what am I doing wrong ? is OpenLDAP
wrongly configured or the certificates are wrong ?

Thank you.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFCMQkufW48a9PWGkURAnFLAJwJlEcFWotos92PWDpE9zXd62dHIgCfbteo
lrT63WmCSak0NuZJrOtsl0w=
=67hv
-----END PGP SIGNATURE-----