On Feb 16, 2010, at 11:52 AM, Roland Gruber wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi Javier, > > Javier Henderson schrieb: >> 2010-02-16 04:24:44: LDAP Account Manager (298210b6ebbbf3bfd04ac45290d50215) >> - ERROR: User cn=Manager,dc=layer42,dc=net (x.x.x.x/) failed to log in (LDAP >> error: Can't contact LDAP server). >> >> I changed the IP address reported to x's but it is the IP address of the >> system I use to browse to LAM. The log level is set to "error". > > you need to make sure that the server name in your certificate and LAM > configuration are the same. Since you use an IP for LAM this could be > the problem. > Secondly, the server certificate needs to be signed by a trusted CA. See > the LAM manual how to specify the trusted CA: > > http://www.ldap-account-manager.org/static/doc/manual/apbs02.html
Roland, I tried also with the name of the server matching the common name in the certificate, it made no difference. The CA is trusted, the ldap.conf file points to the CA root certificate. Note that "ldapsearch -Z" issued on the same machine where LAM is installed works fine. I also made sure that there is only one ldap.conf file in the system. Is there more debug output available from LAM? -jav ------------------------------------------------------------------------------ SOLARIS 10 is the OS for Data Centers - provides features such as DTrace, Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW http://p.sf.net/sfu/solaris-dev2dev _______________________________________________ Lam-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lam-public
