[ubuntu] OpenLDAP over TLS/SSL

view full story

http://ubuntuforums.org – And so it continues... I am trying to get OpenLDAP configured with TLS (using openssl as opposed to certtool for certificates using own CA). The problem seems to be with not being able to read the files (although I have changed ownership of files to openldap and also given full permissions to everyone in attempts to get this to work). While searching I came accross a post that said to try su - openldap -s /bin/bash -c 'openssl x509 -noout -subject -in /etc/ldap/ssl/newcert.pem' Prior to this command, when I try this command as sudo: sudo -s /bin/bash -c 'openssl x509 -noout -subject (Hardware)

Submitted by colm on 06/06/2012 – Made popular on 06/06/2012

Login or register to post comments
Email this page

Stories similar to [ubuntu] OpenLDAP over TLS/SSL

OpenLDAP+OpenSSL client with OpenLDAP+GnuTLS server...? 2 years 3 weeks ago

It would make it a lot easier on potential helpers to strip out all the excess comments and post only the active lines. This can be done by " grep -v \# /etc/ldap.conf | tr -s '\n' &... [by pschaff]

ldap 2.4 rhel6 problem with openldap ldap_bind: Invalid credentials (49) 2 years 28 weeks ago

Hi M trying to install sendmail server on rhel6.i am having problem in setting up openldap. Please help

regards Mukesh following is slapd.conf

# # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. #

include /etc/openldap/schema/corba.schema include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openlda

gnutls vs openssl with openldap, debian and centos 43 weeks 2 days ago

I have a Debian 6.0.5 server running openldap. It appears to be compiled against gnutls.

How do I renew an expired Ubuntu OpenLDAP SSL Certificate 34 weeks 1 day ago

We went through the steps of revoking an SSL Certificate used by our OpenLDAP server and renewing it but we are unable to start slapd.

Here are the commands we used:

openssl verify hostname_domain_com_cert.pem

We got back that the certificate was expired but "OK"

We revoked the certificate we'd been using:

openssl ca -revoke /etc/ssl/certs/hostname_domain_com_cert.pem

Revoking worked

Install And Configure OpenLDAP On Ubuntu Karmic Koala 3 years 28 weeks ago

Install And Configure OpenLDAP On Ubuntu Karmic Koala

CentOS openLDAP cert trust issues 35 weeks 6 days ago

# LDAPTLS_CACERTDIR=/etc/ssl/certs/ ldapwhoami -x -ZZ -H ldaps://ldap.domain.tld ldap_start_tls: Can't contact LDAP server (-1) additional info: TLS error -8172:Peer's certificate issuer has been marked as not trusted by the user.

# openssl s_client -connect ldap.domain.tld:636 -CApath /etc/ssl/certs <...

OpenLDAP – error: BDB/HDB: BerkeleyDB not available 1 year 25 weeks ago

Today, I was installing “openldap-2.4.28.tgz” package and I got below error. [root@piyush openldap-2.4.28]# ./configure –with-tls=openssl configure: error: BDB/HDB: BerkeleyDB not available After reading installation doc of openldap and README file, found that Berkeley DB is required for slapd. SLAPD: BDB and HDB backends require Oracle Berkeley DB 4.4 – 4.8, or 5.0 – 5.1.

Remove opendlap package using Yum 24 weeks 4 days ago

I'm trying to deinstall openldap. It is corrupt and I want to reinstall. How to do that using Fedora?

Following instructions found on the internet I tried su -c 'yum remove openldap'

Unfortunately that command fails because it seems to be also the command to deinstall yum, which isn't allowed.

Apache:mod_ssl:Error: Private key not found. 3 years 25 weeks ago

hi folks,

I have Apache 2.2.8 running on Red Hat Enterprise Linux Server release 5 (Tikanga).

I have installed a purchased certificate on my server. Upon restarting httpd, I get the following error:

# /etc/init.d/httpd start Apache/2.2.8 mod_ssl/2.2.8 (Pass Phrase Dialog)

[ubuntu] OpenLDAP over TLS/SSL

Search

Beautiful linux wallpapers

Tags