Hello, We tried to fix the problem using all the suggestions made, by the way, thanks for the help, but we�re still not being able to import the CA config into the RAServer. Below we are listing the lines of the ra.conf and ldap.conf that deal with this problem.
etc/openldap/ldap.conf # $OpenLDAP: pkg/ldap/libraries/libldap/ldap.conf,v 1.4.8.6 2000/09/05 17:54:38 kurt Exp $ # # LDAP Defaults # # See ldap.conf(5) for details # This file should be world readable but not world writable. #BASE dc=example, dc=com #URI ldap://ldap.example.com ldap://ldap-master.example.com:666 #SIZELIMIT 12 #TIMELIMIT 15 #DEREF never HOST 127.0.0.1 #BASE dc=example,dc=com base o=UnB,c=BR binddn o=UnB,c=BR bindpw openca rootbinddn cn=LabRedes,o=UnB,c=BR /usr/local/OpenCA/OpenCA/etc/servers/ra.conf ## LDAP Section: ## ============= ## ## As this RA Server Manager has the need to interact with ldap server, ## it is important ( for administrative porpouses ) you can have ## privileged access to directory. LDAP "yes" ## LDAP Server Name ldapserver localhost ## LDAP Port Number ( defaults to 389 ) ldapport 389 ## LDAP Maximum number of records returned by a query ldaplimit 100 ## Now the LDAP default base dn basedn "o=UnB, c=BR" ## Let's define the privileged Account Allowed to Modify the LDAP entries ldaproot "cn=LabRedes,o=UnB,c=BR" ldappwd "openca" ## Let's define some Directory Env ## supposed to find there the bin/, sbin/ directory ldapbasedir "/usr/local/ldap" Do you see any errors? Thanks, Loriza ----- Original Message ----- From: Michael Bell <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Thursday, April 04, 2002 8:13 PM Subject: Re: [Openca-Users] Importing CA Configuration in RAServer web interface > > Projeto Final schrieb: > > > > Hi there, > > > > We are using openca version 20020328 and we are having troubles when > > we try to import the CA config into RAServer. The following message > > appeared on the page: > > > > Importing the configuration from CA ... > > (Please wait until operation completes) > > Importing the RBAC-configuration ... Ok. > > LDAP support is activated > > Importing valid ca_certificate ... > > 57fca826594bcf6a89e21fb7cbf1afae.pem inserted > > Importing CA-Certificates into ldap ... Failed in > > Bind: 49 > > Cannot write CA-Certificate > > 57fca826594bcf6a89e21fb7cbf1afae to LDAP > > Make CA-Certificate available on the server > > ...OK. > > > > And the apache error log registered the following message: > > > > Undefined subroutine &main::gteRequired called at > > /usr/lib/perl5/5.6.0/i386-linux/export-import.lib line 943. > > Compilation failed in require at /usr/local/OpenCA/cgi-bin/ra/ra line > > 217. > > This bug was fixed with 20020327. So I don't know how this bug can > happen with 20020328. So I think you take the wrong errormessage from > apache's error.log because this error would cause the script to exit > immediately. > > LDAP errorcode 49 means the following (from ldap.h): > > #define LDAP_INVALID_CREDENTIALS 0x31 > > So there is something wrong with your LDAP-configuration or the LDAP > settings for OpenCA. > > Michael > -- > ------------------------------------------------------------------- > Michael Bell Email (private): [EMAIL PROTECTED] > Rechenzentrum - Datacenter Email: [EMAIL PROTECTED] > Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482 > Unter den Linden 6 Fax: +49 (0)30-2093 2959 > 10099 Berlin > Germany http://www.openca.org > > _______________________________________________ > Openca-Users mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/openca-users > > _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
