when I tried to import certificates into database I got got error 49 which means invalid credentials. Please I think I got the same error if I run 'ldapsearch' command without -x option. I am running openldap-2.1.8 and openca-0.9.1-RC7. Please look at my slapd.conf file and ldap.conf file to see where I did wrong. Thank you very much!
Charles ******************************************************************* # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.23.2.4 2002/10/17 15:06:27 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # Loglevel 1 allow bind_v2 include /usr/local/etc/openldap/schema/core.schema include /usr/local/etc/openldap/schema/cosine.schema include /usr/local/etc/openldap/schema/inetorgperson.schema # Define global ACLs to disable default read access. # Do not enable referrals until AFTER you have a working directory # service AND an understanding of referrals. #referral ldap://root.openldap.org pidfile /usr/local/var/slapd.pid argsfile /usr/local/var/slapd.args # Load dynamic backend modules: # modulepath /usr/local/libexec/openldap # moduleload back_bdb.la # moduleload back_ldap.la # moduleload back_ldbm.la # moduleload back_passwd.la # moduleload back_shell.la # Sample security restrictions # # Disallow clear text exchange of passwords # disallow bind_simple_unprotected # # Require integrity protection (prevent hijacking) # Require 112-bit (3DES or better) encryption for updates # Require 63-bit encryption for simple bind # security ssf=1 update_ssf=112 simple_bind=64 # Sample access control policy: # Allow read access of root DSE # Allow self write access # Allow authenticated users read access # Allow anonymous users to authenticate # Directives needed to implement policy: #access to dn.base="" by * read access to * by self write by dn="Manager,o=my org,c=US" write by users read by anonymous read # # if no access controls are present, the default policy is: # Allow read by all # # rootdn can always write! ####################################################################### # ldbm database definitions ####################################################################### database bdb suffix "o=my org,c=US" rootdn "cn=Manager,o=my org,c=US" # Cleartext passwords, especially for the rootdn, should # be avoid. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw secret # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd/tools. Mode 700 recommended. directory /usr/local/var/openldap-data # Indices to maintain index objectClass eq *************************************************************** # $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 1.9 2000/09/04 19:57:01 kurt Exp $ # # LDAP Defaults # ldapversion 3 # See ldap.conf(5) for details # This file should be world readable but not world writable. BASE o=my org, c=US URI ldap://ldap.myorg.edu SIZELIMIT 500 TIMELIMIT 3600 DEREF never ------------------------------------------------------- This SF.net email is sponsored by: Microsoft Visual Studio.NET comprehensive development tool, built to increase your productivity. Try a free online hosted session at: http://ads.sourceforge.net/cgi-bin/redirect.pl?micr0003en _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
