[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Sync Replication via TLS/SSL - get bind err



RUMI Szabolcs <rumi_ml@rtfm.hu> writes:

> Hello!
>
> On Thu, 20 Dec 2007 16:34:03 -0800
> Quanah Gibson-Mount <quanah@zimbra.com> wrote:

> TLSCACertificateFile /etc/ssl/certs/CA.pem
> TLSCertificateFile /etc/openldap/ssl/ldap-server.crt
> TLSCertificateKeyFile /etc/openldap/ssl/ldap-server.key
>
> And at the clients:
[...]
> tls_cacertfile /etc/ssl/certs/CA.pem
> #tls_cacertdir /etc/ssl/certs
> tls_cert /etc/openldap/ssl/ldap-client.crt
> tls_key /etc/openldap/ssl/ldap-client.key
{...]

I don't know in which format you have created your ldap-client.crt and
key, but OpenLDAP can only handle pem format.

-Dieter

-- 
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8EF7B6C6