>
> On debian, /etc/ssl/private is only readable by root and members of ssl-cert.
>
> You ćan either add your openldap user to this group or move your certificate
> to /etc/ldap.
>
>
> Best regards
>
> Ulf
Yes, and I believe it was different with Stretch version.
We checked permission with
Am 14.12.23 um 18:00 schrieb Jean-Luc Chandezon:
Thank you Stefan for suggestion
Thank you Howard. It was exactly what I understood. When I start the daemon
with command line:
slapd -h 'ldap://127.0.0.1:389 ldaps://192.168.190.58:636' -g openldap -u
openldap -F /etc/ldap/slapd.d/ -d -1
I can
ese rights:
-rw--- 1 openldap openldap 1704 Nov 29 17:37
/etc/ssl/private/annuaire.atol.fr.key
I'm trying to check access...
Jean-Luc
> -Message d'origine-
> De : Howard Chu
> Envoyé : jeudi 14 décembre 2023 10:46
> À : Stefan Kania ; openldap-
> techni...@op
Stefan Kania wrote:
> Syntax error? Open your file with vi and do a "set: list" and you will see
> additional blanks and tabstops.
>
>
> Am 13.12.23 um 14:28 schrieb Jean-Luc Chandezon:
>>>
>>> You are missing "changetype: modify"
>>>
>>> this is how it should look
>>> -
>>> dn: cn=c
Syntax error? Open your file with vi and do a "set: list" and you will
see additional blanks and tabstops.
Am 13.12.23 um 14:28 schrieb Jean-Luc Chandezon:
You are missing "changetype: modify"
this is how it should look
-
dn: cn=config
changetype: modify
add: olcTLSCertificateFil
--On Wednesday, December 13, 2023 7:51 AM + Jean-Luc Chandezon
wrote:
Hello dear community,
I'm trying to enable LDAPS. I don't understanrd what is cause error.
Is anybody have an idea please?
This almost always means that the slapd process cannot access one or more
of the fil
>
> You are missing "changetype: modify"
>
> this is how it should look
> -
> dn: cn=config
> changetype: modify
> add: olcTLSCertificateFile
> olcTLSCertificateFile: /opt/symas/etc/openldap/example-net-cert.pem
> -
> add: olcTLSCertificateKeyFile
> olcTLSCertificateKeyFile: /opt/syma
Am 13.12.23 um 08:51 schrieb Jean-Luc Chandezon:
Hello dear community,
I’m trying to enable LDAPS. I don’t understanrd what is cause error. Is
anybody have an idea please?
OpenLDAP is 2.5.13, on Debian 12.
Here is our certificate chain definition:
dn: cn=config
add: olcTLSCACertificateFi
Hello dear community,
I'm trying to enable LDAPS. I don't understanrd what is cause error. Is anybody
have an idea please?
OpenLDAP is 2.5.13, on Debian 12.
Here is our certificate chain definition:
dn: cn=config
add: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/LEXP_Infra_CA1