Hi Howard, Can you please give me some suitable link, i can follow?
On Tue, Jul 14, 2015 at 11:05 PM, Aneela Saleem <ane...@platalytics.com> wrote: > Hi Dan, > > I found three libraries in mangpages of slapd-config i.e., OpenSSL, > GnuTLS, or Mozilla NSS > > > > On Tue, Jul 14, 2015 at 10:31 PM, Howard Chu <h...@symas.com> wrote: > >> Dan White wrote: >> >>> On 07/14/15 03:45 +0500, Aneela Saleem wrote: >>> >>>> but when i run the search command: i.e., >>>> *ldapsearch -x -b "dc=platalytics,dc=com" -H 'ldap://localhost:389' -ZZ* >>>> >>>> i get the following error: >>>> >>>> ldap_start_tls: Protocol error (2) >>>> additional info: unsupported extended operation >>>> >>> >>> Which ssl library is your slapd compiled against? See the slapd-config >>> manpage for appropriate configuration for your ssl lib. >>> >>> Following is my *cn=config.ldif* file: >>>> >>> >> This is not a valid file. >> >> >> # AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify. >>>> # CRC32 0cd16f20 >>>> dn: cn=config >>>> objectClass: olcGlobal >>>> cn: config >>>> >>>> *TLSCertificateFile: /etc/ldap/servercrt.pem* >>>> *TLSCertificateKeyFile: /etc/ldap/serverkey.pem* >>>> *TLSCACertificateFile: /etc/ldap/cacert.pem* >>>> >>> >>> Assuming these are correct paths, verify permissions to these files, and >>> check them again. >>> >>> Enable logging/debugging on the server side to trouble shoot. >>> >>> olcArgsFile: /var/run/slapd/slapd.args >>>> olcLogLevel: none >>>> olcPidFile: /var/run/slapd/slapd.pid >>>> olcToolThreads: 1 >>>> structuralObjectClass: olcGlobal >>>> entryUUID: 59729584-bdf0-1034-90b9-fdf431101d87 >>>> creatorsName: cn=config >>>> createTimestamp: 20150713211745Z >>>> entryCSN: 20150713211745.443612Z#000000#000#000000 >>>> modifiersName: cn=config >>>> modifyTimestamp: 20150713211745Z >>>> >>> >>> >> >> -- >> -- Howard Chu >> CTO, Symas Corp. http://www.symas.com >> Director, Highland Sun http://highlandsun.com/hyc/ >> Chief Architect, OpenLDAP http://www.openldap.org/project/ >> > >
