Dears,
I try to initialize the RA. When I do the import from CA /RAServer init/import
Configuration) the script trys to write a certificate into ldap.
I got the html-error:
Importing CA-Certificates into ldap ...
Cannot write CA-Certificate
46d0f836ac9b7e8a0704e1f0d859e5c6 to LDAP
The errror-log of ldap is in the file attached.
I use SuSE8.1, slapd v 1.23.2.2 2002/08/19
After I added in slapd.conf the line
allow bind_v2
openCA can do bind to ldap.
Cutout of slapd.conf:
%<---------------
allow bind_v2
loglevel 1024
database bdb
suffix "dc=results-hannover,dc=de"
rootdn "cn=LDAP Manager,dc=results-hannover,dc=de"
rootpw peterpeter
---------------->%
Thanks for replys.
Harald
--
Dr. Harald Wallus
Results GmbH
Am Listholze 78, D-30177 Hannover
Tel: +49(0)511 90 95 1-23 Fax: +49(0)511 90 95 = 1-90
Email: [EMAIL PROTECTED]
Internet: http://www.results-hannover.de
testserver:~ # Oct 22 13:31:00 testserver slapd[7035]: daemon: conn=6 fd=12 connection
from IP=192.168.251.210:1324 (IP=0.0.0.0:389) accepted.
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12)
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12): got connid=6
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): checking for input on id=6
Oct 22 13:31:00 testserver slapd[7035]: ber_get_next on fd 12 failed errno=11
(Resource temporarily unavailable)
Oct 22 13:31:00 testserver slapd[7079]: do_bind
Oct 22 13:31:00 testserver slapd[7079]: >>> dnPrettyNormal: <cn=LDAP
Manager,dc=results-hannover,dc=de>
Oct 22 13:31:00 testserver slapd[7079]: <<< dnPrettyNormal: <cn=LDAP
Manager,dc=results-hannover,dc=de>, <cn=ldap manager,dc=results-hannover,dc=de>
Oct 22 13:31:00 testserver slapd[7079]: do_bind: version=2 dn="cn=LDAP
Manager,dc=results-hannover,dc=de" method=128
Oct 22 13:31:00 testserver slapd[7079]: conn=6 op=0 BIND dn="cn=LDAP
Manager,dc=results-hannover,dc=de" method=128
Oct 22 13:31:00 testserver slapd[7079]: ==> bdb_bind: dn: cn=LDAP
Manager,dc=results-hannover,dc=de
Oct 22 13:31:00 testserver slapd[7079]: bdb_dn2entry_rw("cn=ldap
manager,dc=results-hannover,dc=de")
Oct 22 13:31:00 testserver slapd[7079]: => bdb_dn2id_matched( "cn=ldap
manager,dc=results-hannover,dc=de" )
Oct 22 13:31:00 testserver slapd[7079]: <= bdb_dn2id_matched: no match
Oct 22 13:31:00 testserver slapd[7079]: do_bind: v2 bind: "cn=LDAP
Manager,dc=results-hannover,dc=de" to "cn=LDAP Manager,dc=results-hannover,dc=de"
Oct 22 13:31:00 testserver slapd[7079]: send_ldap_result: conn=6 op=0 p=2
Oct 22 13:31:00 testserver slapd[7079]: send_ldap_result: err=0 matched="" text=""
Oct 22 13:31:00 testserver slapd[7079]: send_ldap_response: msgid=1 tag=97 err=0
Oct 22 13:31:00 testserver slapd[7079]: conn=6 op=0 RESULT tag=97 err=0 text=
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12)
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12): got connid=6
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): checking for input on id=6
Oct 22 13:31:00 testserver slapd[7035]: ber_get_next on fd 12 failed errno=0 (Success)
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): input error=-2 id=6,
closing.
Oct 22 13:31:00 testserver slapd[7035]: connection_closing: readying conn=6 sd=12 for
close
Oct 22 13:31:00 testserver slapd[7035]: connection_close: conn=6 sd=12
Oct 22 13:31:00 testserver slapd[7035]: conn=6 fd=12 closed
Oct 22 13:31:00 testserver slapd[7035]: daemon: conn=7 fd=12 connection from
IP=192.168.251.210:1325 (IP=0.0.0.0:389) accepted.
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12)
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12): got connid=7
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): checking for input on id=7
Oct 22 13:31:00 testserver slapd[7035]: ber_get_next on fd 12 failed errno=11
(Resource temporarily unavailable)
Oct 22 13:31:00 testserver slapd[7081]: do_bind
Oct 22 13:31:00 testserver slapd[7081]: >>> dnPrettyNormal: <cn=LDAP
Manager,dc=results-hannover,dc=de>
Oct 22 13:31:00 testserver slapd[7081]: <<< dnPrettyNormal: <cn=LDAP
Manager,dc=results-hannover,dc=de>, <cn=ldap manager,dc=results-hannover,dc=de>
Oct 22 13:31:00 testserver slapd[7081]: do_bind: version=2 dn="cn=LDAP
Manager,dc=results-hannover,dc=de" method=128
Oct 22 13:31:00 testserver slapd[7081]: conn=7 op=0 BIND dn="cn=LDAP
Manager,dc=results-hannover,dc=de" method=128
Oct 22 13:31:00 testserver slapd[7081]: ==> bdb_bind: dn: cn=LDAP
Manager,dc=results-hannover,dc=de
Oct 22 13:31:00 testserver slapd[7081]: bdb_dn2entry_rw("cn=ldap
manager,dc=results-hannover,dc=de")
Oct 22 13:31:00 testserver slapd[7081]: => bdb_dn2id_matched( "cn=ldap
manager,dc=results-hannover,dc=de" )
Oct 22 13:31:00 testserver slapd[7081]: <= bdb_dn2id_matched: no match
Oct 22 13:31:00 testserver slapd[7081]: do_bind: v2 bind: "cn=LDAP
Manager,dc=results-hannover,dc=de" to "cn=LDAP Manager,dc=results-hannover,dc=de"
Oct 22 13:31:00 testserver slapd[7081]: send_ldap_result: conn=7 op=0 p=2
Oct 22 13:31:00 testserver slapd[7081]: send_ldap_result: err=0 matched="" text=""
Oct 22 13:31:00 testserver slapd[7081]: send_ldap_response: msgid=2 tag=97 err=0
Oct 22 13:31:00 testserver slapd[7081]: conn=7 op=0 RESULT tag=97 err=0 text=
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12)
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12): got connid=7
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): checking for input on id=7
Oct 22 13:31:00 testserver slapd[7035]: ber_get_next on fd 12 failed errno=11
(Resource temporarily unavailable)
Oct 22 13:31:00 testserver slapd[7080]: do_search
Oct 22 13:31:00 testserver slapd[7080]: >>> dnPrettyNormal:
<[EMAIL PROTECTED],cn=ca,ou=intern,o=results-hannover,c=de>
Oct 22 13:31:00 testserver slapd[7080]: <<< dnPrettyNormal:
<[EMAIL PROTECTED],cn=ca,ou=intern,o=results-hannover,c=de>,
<[EMAIL PROTECTED],cn=ca,ou=intern,o=results-hannover,c=de>
Oct 22 13:31:00 testserver slapd[7080]: SRCH
"[EMAIL PROTECTED],cn=ca,ou=intern,o=results-hannover,c=de" 0 2
Oct 22 13:31:00 testserver slapd[7080]: 0 0 0
Oct 22 13:31:00 testserver slapd[7080]: begin get_filter
Oct 22 13:31:00 testserver slapd[7080]: PRESENT
Oct 22 13:31:00 testserver slapd[7080]: end get_filter 0
Oct 22 13:31:00 testserver slapd[7080]: filter: (cACertificate;binary=*)
Oct 22 13:31:00 testserver slapd[7080]: attrs:
Oct 22 13:31:00 testserver slapd[7080]:
Oct 22 13:31:00 testserver slapd[7080]: conn=7 op=1 SRCH
base="[EMAIL PROTECTED],cn=ca,ou=intern,o=results-hannover,c=de"
scope=0 filter="(cACertificate;binary=*)"
Oct 22 13:31:00 testserver slapd[7080]: send_ldap_result: conn=7 op=1 p=2
Oct 22 13:31:00 testserver slapd[7080]: send_ldap_result: err=10 matched="" text=""
Oct 22 13:31:00 testserver slapd[7080]: send_ldap_response: msgid=3 tag=101 err=32
Oct 22 13:31:00 testserver slapd[7080]: conn=7 op=1 RESULT tag=101 err=32 text=
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12)
Oct 22 13:31:00 testserver slapd[7035]: connection_get(12): got connid=7
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): checking for input on id=7
Oct 22 13:31:00 testserver slapd[7035]: ber_get_next on fd 12 failed errno=0 (Success)
Oct 22 13:31:00 testserver slapd[7035]: connection_read(12): input error=-2 id=7,
closing.
Oct 22 13:31:00 testserver slapd[7035]: connection_closing: readying conn=7 sd=12 for
close
Oct 22 13:31:00 testserver slapd[7035]: connection_close: conn=7 sd=12
Oct 22 13:31:00 testserver slapd[7035]: conn=7 fd=12 closed
[22/Oct/2002:13:31:01 +0200] 192.168.10.11 SSLv3 RC4-MD5 "GET
/cgi-bin/online/Admin?cmd=importConfig HTTP/1.0" 1857
[22/Oct/2002 13:31:01 23860] [info] Connection to child 0 closed with standard
shutdown (server ra.intern.results-hannover.de:443, client 192.168.10.11)
