[Date Prev][Date Next] [Chronological] [Thread] [Top]

fails to start ldaps://



it's openldap-2.4.17 in debian testing
I try to config slapd.conf to use ldap ssl.

TLSCACertificateFile cacert.pem
TLSCertificateFile ldapclient.pem
TLSCertificateKeyFile ldapclientkey.pem
TLSVerifyClient never

I could not start slapd after I config TLS in slapd.conf, error info is "Main: TLS init def ctx failed: -69"

the OpenLDAP Admin Guide only mentions CipherSuite in OpenSSL, not GnuTLS. Steve Langasek advice leave TLSCipherSuite blank(http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=462588), and I do config so.

But if I config some specific CipherSuite or just "ALL", error info will be "TLS: could not set cipher list ALL. Main: TLS init def ctx failed: -1"

gtalk:freeespeech@gmail.com