Hi Yogesh, seems there's no certificate in admin server. I don't see how you could enable ssl in admin and not have any certificate in admin certificate db.
To disable ssl, you could follow this article: https://access.redhat.com/solutions/762573 Thanks and regards, German. ----- Original Message ----- > From: "Yogesh Sharma" <[email protected]> > To: [email protected] > Sent: Tuesday, September 23, 2014 1:54:12 AM > Subject: [389-users] Issue Starting Admin Server after Enabling SSL in Admin > Server. > > Hi, > > > My 389-ds is using SSL in Directory Server. Once I checked the checkbox in > Admin Server to use SSL and try to restart it (admin) it is failing. The > logs says as below: > > [Tue Sep 23 05:20:35 2014] [notice] SELinux policy enabled; httpd running as > context unconfined_u:system_r:httpd_t:s0 > [Tue Sep 23 05:20:36 2014] [crit] sslinit: NSS is required to use LDAPS, but > security initialization failed [-12285:Unable to find the certificate or key > necessary for authentication.]. Cannot start server > > > [root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/admin-serv -L > > Certificate Nickname Trust Attributes > SSL,S/MIME,JAR/XPI > > [root@vm-ser-master-01 admin-serv]# > > > > [root@vm-ser-master-01 admin-serv]# certutil -d > /etc/dirsrv/slapd-vm-ser-master-01/ -L > > Certificate Nickname Trust Attributes > SSL,S/MIME,JAR/XPI > > ca.initd.in CT,, > server-cert u,u,u > [root@vm-ser-master-01 admin-serv]# > > > I also tried disbaling SSL to revert back but it is failing and No messages > in Log. Please suggest further to fix or revert this. > > > Best Regards, > __________________________________________ > Yogesh Sharma > > > > -- > 389 users mailing list > [email protected] > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/389-users
