[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP starts, but...



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

More error log for this same error:

connection_get(17)
connection_get(17): got connid=1
connection_read(17): checking for input on id=1
TLS trace: SSL_accept:before/accept initialization
tls_read: want=11, got=11
  0000:  80 92 01 03 01 00 69 00  00 00 20                  ......i...
tls_read: want=137, got=137
  0000:  00 00 39 00 00 38 00 00  35 00 00 16 00 00 13 00   ..9..8..5.......
  0010:  00 0a 07 00 c0 00 00 33  00 00 32 00 00 2f 00 00   .......3..2../..
  0020:  07 05 00 80 03 00 80 00  00 66 00 00 05 00 00 04   .........f......
  0030:  01 00 80 08 00 80 00 00  63 00 00 62 00 00 61 00   ........c..b..a.
  0040:  00 15 00 00 12 00 00 09  06 00 40 00 00 65 00 00   ..........@..e..
  0050:  64 00 00 60 00 00 14 00  00 11 00 00 08 00 00 06   d..`............
  0060:  04 00 80 00 00 03 02 00  80 67 1f 55 39 ef 68 0d   .........g.U9.h.
  0070:  54 e5 98 ac 64 17 ed 88  fc 0e d5 01 b3 e3 9f cc   T...d...........
  0080:  7b 44 34 8a b3 e5 ae 87  a5                        {D4......
tls_write: want=7, written=7
  0000:  15 03 01 00 02 02 28                               ......(
TLS trace: SSL3 alert write:fatal:handshake failure
TLS trace: SSL_accept:error in SSLv3 read client hello B
TLS trace: SSL_accept:error in SSLv3 read client hello B
TLS: can't accept.
TLS: error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher 
s3_srvr.c:888
connection_read(17): TLS accept error error=-1 id=1, closing
connection_closing: readying conn=1 sd=17 for close
connection_close: conn=1 sd=17
daemon: removing 17
conn=1 fd=17 closed

Thank you.
Je Lundo Marto 14 2005 22:52, Pupeno skribis:
> I've managed to make OpenLDAP start, but I still can't get everything to
> work correctly.
> I've configured phpldapadmin to start TLS, like this:
>
> 	$servers[$i]['name'] = 'Science Fiction Readers';
> 	$servers[$i]['host'] = 'ldap://master.pupeno.com';
> 	$servers[$i]['base'] = 'dc=sfreaders,dc=com,dc=ar';
> 	$servers[$i]['port'] = 389;
> 	$servers[$i]['auth_type'] = 'session';
> 	$servers[$i]['tls'] = true;
>
> but on the browser, I get:
>
> 	"Could not start TLS. Please check your LDAP server configuration."
>
> and on the logs I get (among others):
>
> 	Mar 14 20:40:11 master slapd[12234]: connection_get(17)
> 	Mar 14 20:40:11 master slapd[12234]: connection_get(17): got connid=0
> 	Mar 14 20:40:11 master slapd[12234]: connection_read(17): checking for
> input on id=0
> 	Mar 14 20:40:11 master slapd[12234]: connection_read(17): TLS accept error
> error=-1 id=0, closing
> 	Mar 14 20:40:11 master slapd[12234]: connection_closing: readying conn=0
> sd=17 for close
>
> so I changed phpldapadmin to use SSL (ldaps) instead, and I've configured
> it this way:
>
> 	$servers[$i]['name'] = 'Science Fiction Readers';
> 	$servers[$i]['host'] = 'ldaps://master.pupeno.com';
> 	$servers[$i]['base'] = 'dc=sfreaders,dc=com,dc=ar';
> 	$servers[$i]['port'] = 636;
> 	$servers[$i]['auth_type'] = 'session';
> 	$servers[$i]['tls'] = false;
>
> and now, when trying to log in I get "Bad username or password. Please try
> again." which doesn't make much sense but I've seen phpldapadmin fail with
> that error when the problem was anything.
> This times the logs show this (almost the same):
>
> 	Mar 14 20:49:37 master slapd[12234]: connection_get(17)
> 	Mar 14 20:49:37 master slapd[12234]: connection_get(17): got connid=4
> 	Mar 14 20:49:37 master slapd[12234]: connection_read(17): checking for
> input on id=4
> 	Mar 14 20:49:37 master slapd[12234]: connection_read(17): TLS accept error
> error=-1 id=4, closing
> 	Mar 14 20:49:37 master slapd[12234]: connection_closing: readying conn=4
> sd=17 for close
> 	Mar 14 20:49:37 master slapd[12234]: connection_close: conn=4 sd=17
>
> Can anybody make any meaning out of it and give me some hints as to what am
> I doing wrong ?

- -- 
Pupeno: pupeno@pupeno.com - http://pupeno.com
Reading Science Fiction ? http://sfreaders.com.ar
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFCNlJ0fW48a9PWGkURAoJ9AJ4lKIA89SEIFh9Ha5QaSokqj+J8/QCbB651
5L0B5cIllYhnH+U6HGd+pXw=
=rfgA
-----END PGP SIGNATURE-----