https://bz.apache.org/bugzilla/show_bug.cgi?id=66490
--- Comment #2 from [email protected] --- Created attachment 38513 --> https://bz.apache.org/bugzilla/attachment.cgi?id=38513&action=edit ldap debug output Ah thanks! Didn't know about this one :) I got a debug output that seems to point to certificate issues. Relevant bits: attempting to connect: connect errno: 115 ldap_int_poll: fd: 45 tm: 10 ldap_is_sock_ready: 45 ldap_ndelay_off: 45 ldap_pvt_connect: 0 TLS: only one of certfile and keyfile specified That's odd though, as I have no issue with other services like dovecot or tools like gnutls-cli, openssl s_client or ldapsearch. Both key and cert are defined in slapd config: /etc/ldap/slapd.d/cn=config.ldif:olcTLSCACertificateFile: /etc/ldap/chain.pem /etc/ldap/slapd.d/cn=config.ldif:olcTLSCertificateFile: /etc/ldap/fullchain.pem /etc/ldap/slapd.d/cn=config.ldif:olcTLSCertificateKeyFile: /etc/letsencrypt/live/ldap.domain.org/privkey.pem I also confirmed /etc/ldap/{,full}chain.pem files match the privkey.pem. I'm not even sure if these logs point to a TLS cert issue, as errno 115 seems to be Operation in progress, but then internet search pointed me to that same direction. I'm open to any idea on how to debug tihs further! Thank you :) -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
