[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Reg OpenLdap on Ubuntu
- To: openldap-technical@openldap.org
- Subject: Reg OpenLdap on Ubuntu
- From: Asimananda Mohanty <asimananda.mohanty@gmail.com>
- Date: Fri, 10 Jul 2009 16:30:46 +0530
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type; bh=q7bpE0bkjXtV3pAgwi3HJPALmEEOCgMcqh9gpgu9MFo=; b=gp3wcPX+Fl2WOzoaidWbJR+pAe5iCSJkrwUorVl1A9tr154EKwhRlSqtHSoutuDvga 4ajGiDRqb+p9Fez5KjlQORAWBAty0fimdoRsDG39lUe0FODoN2d7rIYOy+QUpq6U4ER3 VJEQUPJopPVq7vEwZoi3/lX58rt5MsI4wc9ug=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=T99dvwDZJeNIcrIwD76cSlXUo9fG7G/1mWXaJgshkWm4+YPfW+sM8tF67137qdm5lV Y7OOtfqTKEK8Ebh7gSpe2E9I4CdMmYeUc513SBpwAD16UL/ttsAjkmSVp2gxVsnYYGR/ pe6oiqa7bKzKPuFoo951rcpebndD/mjaaJY5I=
Hi All,
I am currently busy configuring OpenLdap on my newly installed Ubuntu 9.04.
Here is what I have done till now.
I followed the steps defined in https://help.ubuntu.com/8.10/serverguide/C/openldap-server.html and installation was successful. I installed PhpLdapAdmin also.
After I created certificate, key etc, I created a .ldif file (enable-ca.ldif) with the following content :
dn: cn=config
add: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem
-
add: olcTLSCertificateFile
olcTLSCertificateFile: /etc/ssl/certs/server.crt
-
add: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/ssl/private/server.key
Then I executed the command :
ldapmodify -D "cn=admin,cn=config" -x -w 12345678 -f enable-ca.ldif
and it was a success.
But after this, when I tried to restart slapd, I got errors like the following :
main: TLS init def ctx failed: -1
I noticed that after I executed "ldapmodify -D "cn=admin,cn=config" -x -w 12345678 -f enable-ca.ldif", 3 lines are added to /etc/ldap/slapd.d/cn=config.ldif and when I commented the last two lines like the following, slapd started successfully.
olcTLSCACertificateFile: /etc/ssl/certs/cacert.pem
#olcTLSCertificateFile: /etc/ssl/certs/server.crt
#olcTLSCertificateKeyFile: /etc/ssl/private/server.key
This looks quite strange.
Please help me resolving the same.
-Asimananda