Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > HOWTO-Related Questions

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Thread Tools Display Modes
Old 15th September 2011, 21:17
deco5003 deco5003 is offline
Join Date: Jul 2009
Posts: 46
Thanks: 2
Thanked 2 Times in 2 Posts
Default Generating TSL Certificate for Slapd

After several attempt to run slapd with TLS Cert, found somebody who told me: “…If you generated them using OpenSSL, you're going to run into problems. Debian switched over to using gnutls a while ago, and it doesn't play nice with OpenSSL certificates”…
Here are some details my syslog shows:
tail /var/log/syslog

Sep 15 12:05:36 dec1 slapd[5664]: @(#) $OpenLDAP: slapd 2.4.11 (Jul 24 2010 08:14:20) $#012#011@murphy:/build/buildd-openldap_2.4.11-1+lenny2-i386-H5BDjb/openldap-2.4.11/debian/build/servers/slapd
Sep 15 12:05:37 dec1 slapd[5664]: main: TLS init def ctx failed: -1
Sep 15 12:05:37 dec1 slapd[5664]: slapd stopped.
Sep 15 12:05:37 dec1 slapd[5664]: connections_destroy: nothing to destroy.
So I am going to test generating the certs with gnutls certificate generator: certtool.

By the way does anybody knows how to install the Python-certtool?
Reply With Quote
Sponsored Links
Old 16th September 2011, 09:49
Mark_NL Mark_NL is offline
Senior Member
Join Date: Sep 2008
Location: The Netherlands
Posts: 912
Thanks: 12
Thanked 100 Times in 96 Posts

For my ldap setup i used

 openssl req -newkey rsa:1024 -x509 -nodes -out server.pem -keyout server.pem -days 365
to create the certificates and works just fine.
Reply With Quote
The Following User Says Thank You to Mark_NL For This Useful Post:
deco5003 (16th September 2011)


slapd, tls

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
how do I install a SSL cert for a website? mangoo General 3 3rd February 2012 13:46
ISPConfig 3 - CentOS 5.4 - SSL Problems!?! owainbaber Installation/Configuration 4 26th July 2011 18:12
SSL client certificates teves Installation/Configuration 6 26th February 2011 07:20
Is my postfix is hacked? bzzik Server Operation 21 15th July 2009 15:13
Setting up a new server - Suse 11.1 londonman Server Operation 34 10th April 2009 14:16

All times are GMT +2. The time now is 06:30.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.