On Fri, Mar 7, 2014 at 3:42 PM, Kölbener Lukas <[email protected]>wrote:
> Hi > > I've set up an apacheDS Server 2.0.0-M15 on a Ubuntu LTS and use the > studio to configure it. > > I now wanted to switch to ldaps using my own certificate which is > officially signed. I saved it in a keystore file and did you import the private key as well? you can use a GUI tool like portecle[1] instead of keytool [1] http://portecle.sourceforge.net/ > and followed the instructions in the basic user guide. But as soon I > define something in the "keystore" field one the configuration view in the > studio and try to restart, the apacheds server is not starting anymore without any error log: > > STATUS | wrapper | 2014/03/07 11:09:20 | --> Wrapper Started as Daemon > STATUS | wrapper | 2014/03/07 11:09:20 | Launching a JVM... > INFO | jvm 1 | 2014/03/07 11:09:22 | Wrapper (Version 3.2.3) > http://wrapper.tanukisoftware.org > INFO | jvm 1 | 2014/03/07 11:09:22 | Copyright 1999-2006 Tanuki > Software, Inc. All Rights Reserved. > INFO | jvm 1 | 2014/03/07 11:09:22 | > INFO | jvm 1 | 2014/03/07 11:09:34 | _ > _ ____ ____ > INFO | jvm 1 | 2014/03/07 11:09:34 | / \ _ __ ___ > ___| |__ ___| _ \/ ___| > INFO | jvm 1 | 2014/03/07 11:09:34 | / _ \ | '_ \ / _` |/ > __| '_ \ / _ \ | | \___ \ > INFO | jvm 1 | 2014/03/07 11:09:34 | / ___ \| |_) | (_| | > (__| | | | __/ |_| |___) | > INFO | jvm 1 | 2014/03/07 11:09:34 | /_/ \_\ .__/ > \__,_|\___|_| |_|\___|____/|____/ > INFO | jvm 1 | 2014/03/07 11:09:34 | |_| > INFO | jvm 1 | 2014/03/07 11:09:34 | > STATUS | wrapper | 2014/03/07 11:09:36 | <-- Wrapper Stopped > > I don't know how to change the configuration without a running server, so > every attempt to define a keystore file end up in reinstalling the apacheDS > Server. > > 1. open config.ldif present in the conf folder of the running server location 2. go to the entry with the DN ads-serverId=ldapServer,ou=servers,ads-directoryServiceId=default,ou=config 3. set the path to your keystore file as the value of attribute 'ads-keystoreFile' 4. set the Base64 encoded password as the value for 'ads-certificatePassword' 5. restart the server if you want to use Studio for configuring again then after step 2 mentioned above 3. remove the attributes 'ads-keystoreFile' and 'ads-certificatePassword' 4. restart the server 5. open configuration using Studio and update the configuration accordingly I appreciate every kind of help, > Thank you, > Lukas > -- Kiran Ayyagari http://keydap.com
