[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: tls init def ctx failed: -1 with my cacert signed certs
- To: Jelle de Jong <jelledejong@powercraft.nl>
- Subject: Re: tls init def ctx failed: -1 with my cacert signed certs
- From: Mathias Gug <mathiaz@ubuntu.com>
- Date: Fri, 24 Jul 2009 11:38:52 -0400
- Cc: openldap-software@openldap.org
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to:cc :content-type:content-transfer-encoding; bh=Vcixjmg2cZcNwPMEFaJSSddk+7YCBQlEgIBzxPZs8Mg=; b=JyD+gBsPJgpeB+65jdEVOi9QnOMpgJINNErG0yRQ5Ou5f+XpsdP/yzZ5E7DO8darKR Y22/PJswtlqaV/jk07+3Eo9PAwblodbkd4SvEyx8BcOfS/SAfPUCsfxIOPG1wMUkM7VO 5T/ANykmqMU/dnDEVCA9QANnCqCrOxCvlkwpE=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; b=ilVY/kwsrJuUDaDOwJGmKhOJCDKJmCshEhTwRans/uPV3OHsfpBQ8mr7XrpHpTfVGX stXA7vwuGqfIxzs9Uusx5jaUyg8NrADJKFyjHWrzxMtYknAMoSUTJAP9kPiGKEFW/Stv fhCcKc9BccB3IWmvZAaw0imOOFtKah81DevDE=
- In-reply-to: <4A69B31A.80501@powercraft.nl>
- References: <4A69B31A.80501@powercraft.nl>
Hi Jelle,
On Fri, Jul 24, 2009 at 9:11 AM, Jelle de Jong<jelledejong@powercraft.nl> wrote:
> I have a server that has cacert.org signed certificats, I use them for
> apache https, postfix and dovecot. Now I am trying to use them to get a
> secure only access to openldap. I am still a bit new to openldap but I
> get this output:
>
> http://debian.pastebin.com/m449836db
>
TLSCACertificateFile "/usr/share/ca-certificates/cacert.org/root.crt"
TLSCertificateFile "/etc/tls/powercraft.nl/powercraft.nl-certificate.pem"
TLSCertificateKeyFile "/etc/tls/powercraft.nl/powercraft.nl-privatekey.pem"
Does the openldap user have access to all three files above?
--
Mathias Gug
Ubuntu Developer http://www.ubuntu.com