[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
TLS error - TLS accept failure error=1
- To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- Subject: TLS error - TLS accept failure error=1
- From: cbulist <cbulist@gmail.com>
- Date: Thu, 06 Sep 2012 10:53:22 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=YtGa3eV7x5uYBbaXn+cbMqha+AacnC3Hdw5bSdB+QVc=; b=GzEZplKQEt9cs10ueW6oOMQRd3HWtMQgD79ydgfI/gT0Ktc81FcdmfWnPYVmWoK0C0 hbG90G4JyR2GPKjKnHBn6Ns5jOh+d8kRsvGMOkhLC2iwqdLU+S4amCd9qmJrMtGya0oD pkUZ0RSsQEsB6JWEXBi/HEhFvfrY6Gaq+IAZJD3JJa9ktnxYfbtbAMjsZxlSAVDb045O nBsZB88Jmiq+LqW7qk+QypOaEbZUiBAcF4a727P29/1RWuU6tuB8XHApaUfrtf+Hici6 7qrVIShF/mqDBbzIqSf1ZVcdsME0ahdoKgUnhrpihNm0FzrePuLp3CRi5AGrgDMd/0CJ dcGA==
- User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Fedora/3.1.16-1.fc14 Thunderbird/3.1.16
Hi,
I have problem configuring TLS in my server (2.4.23).
I got the error TLS accept failure error=1 when a client tries to log in
using ssh.
But if I do a ldapsearch from the client machine to the server I don't
have problem and I get the answer from the server:
ldapsearch -x -H ldaps://serverldap -D "cn=Manager,dc=sample,dc=com" -W
-b "dc=sample,dc=com" 'uid=user1'
These are my config files:
The client ldap.conf:
URI ldaps://serverldap
BASE dc=sample,dc=com
TLS_CACERT /etc/openldap/cacerts/server.pem
The server slapd.conf
TLSCACertificateFile /etc/openldap/certs/server.pem
TLSCertificateFile /etc/openldap/certs/server.pem
TLSCertificateKeyFile /etc/openldap/certs/server.pem
The /etc/sysconfig/ldap.conf
SLAPD_LDAPS=yes
Any help?
Thanks!