Re: ARS & LDAP SSL

2007-06-13 Thread Kevin Murray 
Hi Fred,

The SSL port is set correctly..If the ldap directory didn't like the
certificate..would you expect a different error?..or is the error I
get a catch all one.

Thanks,
Kevin

Quoting "Grooms, Frederick W" <[EMAIL PROTECTED]>:

> LDAP result code of 81 = Cannot contact LDAP server
>
> Double check to see if you are connecting to the SSL LDAP on the correct
> port (default for LDAP-SSL is 636).  Look at the plugin log for the
> ldap_init line (should be a few above the error)
>
> Fred
>
> -Original Message-
> From: Action Request System discussion list(ARSList)
> [mailto:[EMAIL PROTECTED] On Behalf Of Kevin Murray
> Sent: Wednesday, June 13, 2007 12:04 PM
> To: arslist@ARSLIST.ORG
> Subject: ARS & LDAP SSL
>
> Hi All,
>
> I just can't get the AREA plugin to communicate with our LDAP system
> over SSL (AR6.3 Patch 20/Novell eDirectory). Non-SSL connection works a
> treat, but am struggling to get the SSL connection to work. I've
> reviewed previous posts to no available. If anybody could give me some
> guidance it would truly appreciated.
>
> So far, I've:
>
> 1) Installed Netscape 4.79 on the Remedy Server  (HP-UX)
> 2) Pointed Netscape at the https link for our LDAP system and registered
> the root cert
> 3) Added additional certs to the cert7.db file using the certutil
> utility on the HP system
>
> certutil -A -n "GDS-TEST CA-PublicKeyCert" -t "C,C,C" -i "GDS-TEST CA-
> PublicKeyCert.der" -d /cluster/remapp/app/.netscape
>
> 4) Configured up the AREA Configuration form
> 5) When testing the connection, the plugin logging (FINEST level) shows
> the following error...
>
> * Wed Jun 13 2007 16:57:24.0744 */  
> ldap_simple_bind("cn=RemedyAdmin,ou=ServiceAccounts,o=Services",
> hidden)
> * Wed Jun 13 2007 16:57:24.0889 */   Bind:
> Can't contact LDAP server (LDAPERR Code 81)
> * Wed Jun 13 2007 16:57:24.0892 */   Bind:
> ldap_simple_bind failed [cn=RemedyAdmin,ou=ServiceAccounts,o=Services]
> * Wed Jun 13 2007 16:57:24.0898 */ -VL
> FAIL
>
> Does anyone have any ideas on how I can troubleshoot further? or is
> there something I've missed?
>
> Thanks In Advance,
> Kevin
>
>
___
> UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the
> Answers Are"
>





This message was sent using IMP, the Internet Messaging Program.

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the 
Answers Are"

Re: ARS & LDAP SSL

2007-06-13 Thread Grooms, Frederick W 
LDAP result code of 81 = Cannot contact LDAP server 

Double check to see if you are connecting to the SSL LDAP on the correct
port (default for LDAP-SSL is 636).  Look at the plugin log for the
ldap_init line (should be a few above the error)

Fred

-Original Message-
From: Action Request System discussion list(ARSList)
[mailto:[EMAIL PROTECTED] On Behalf Of Kevin Murray
Sent: Wednesday, June 13, 2007 12:04 PM
To: arslist@ARSLIST.ORG
Subject: ARS & LDAP SSL

Hi All,

I just can't get the AREA plugin to communicate with our LDAP system
over SSL (AR6.3 Patch 20/Novell eDirectory). Non-SSL connection works a
treat, but am struggling to get the SSL connection to work. I've
reviewed previous posts to no available. If anybody could give me some
guidance it would truly appreciated.

So far, I've:

1) Installed Netscape 4.79 on the Remedy Server  (HP-UX)
2) Pointed Netscape at the https link for our LDAP system and registered
the root cert
3) Added additional certs to the cert7.db file using the certutil
utility on the HP system

certutil -A -n "GDS-TEST CA-PublicKeyCert" -t "C,C,C" -i "GDS-TEST CA-
PublicKeyCert.der" -d /cluster/remapp/app/.netscape

4) Configured up the AREA Configuration form
5) When testing the connection, the plugin logging (FINEST level) shows
the following error...

* Wed Jun 13 2007 16:57:24.0744 */  
ldap_simple_bind("cn=RemedyAdmin,ou=ServiceAccounts,o=Services",
hidden)
* Wed Jun 13 2007 16:57:24.0889 */   Bind:
Can't contact LDAP server (LDAPERR Code 81)
* Wed Jun 13 2007 16:57:24.0892 */   Bind:
ldap_simple_bind failed [cn=RemedyAdmin,ou=ServiceAccounts,o=Services]
* Wed Jun 13 2007 16:57:24.0898 */ -VL
FAIL

Does anyone have any ideas on how I can troubleshoot further? or is
there something I've missed?

Thanks In Advance,
Kevin

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the 
Answers Are"