Date: Thu, 26 Feb 2015 15:04:40 -0600 From: dwhite@cafedemocracy.org To: jeev_biz@hotmail.com CC: openldap-technical@openldap.org Subject: Re: main: TLS init def ctx failed: -1 On 02/26/15 20:53 +0000, jeevan kc wrote: >§ olcTLSCACertificateFile: >/usr/local/etc/openldap/cacert.pem >§ olcTLSCertificateFile: >/usr/local/etc/openldap/servercrt.pem >§ olcTLSCertificateKeyFile: >/usr/local/etc/openldap/serverkey.pem
>Feb 26 15:28:56 lap00551 slapd[14775]: main: TLS init def ctx failed: -1 >Can Someone please tell me what the error is and how I fix the issue?
Which version of OpenLDAP, and which SSL library have you compiled against? Verify permissions to the 3 files above, for the user that slapd is running
On 02/26/15 21:30 +0000, jeevan kc wrote:
Hi Dan,OpenLDAP version 2.4.30OpenSSL version 1.0.0dAre these two compatible? Also I've verified the permissions. Your reply is appreciated . Thanks
Try increasing your debug log level, or starting slapd in debug mode for additional details. Use 'openssl verify' (manpage verify(1)) to verify your cert. Running the command *as* your slapd user could also verify permissions. -- Dan White