Hi,
Please help
I have already post but no one help me
I check in the previous post without seeing a soluce
Please help it's very urgent
The problem is i cannot add certificate to LDAP Directory
The web inteface of openldap show this error:
Cannot write certificate 8 to LDAP (error 34: LDAP-bind failed:invlid DN)
here is the result of the stderr.log
OpenCA::LDAP->add_object: Started add_object ...
OpenCA::LDAP->add_object: certificate present ...
OpenCA::LDAP->add_object: role ok ...
OpenCA::LDAP->add_object: Information of the Object:
OpenCA::LDAP->add_object: dn [EMAIL PROTECTED],CN=CA,OU=PKI-CA,O=BCEAO,C=SN
OpenCA::LDAP->add_object: cn CA
OpenCA::LDAP->add_object: serID 0
OpenCA::LDAP->add_object: email [EMAIL PROTECTED]
OpenCA::LDAP->add_object: ou ARRAY(0x9da73cc)
OpenCA::LDAP->add_object: o BCEAO
OpenCA::LDAP->add_object: l
OpenCA::LDAP->add_object: st
OpenCA::LDAP->add_object: c SN
OpenCA::LDAP->add_object: End of the information of the Object
OpenCA::LDAP->connect: ldap2://certifs:9009
OpenCA::LDAP->setError: 34: invalid DN
OpenCA::LDAP->add_object: Cannot bind to server.
OpenCA::LDAP->add_object: certificate present ...
OpenCA::LDAP->add_object: role ok ...
OpenCA::LDAP->add_object: Information of the Object:
OpenCA::LDAP->add_object: dn [EMAIL PROTECTED],CN=CA,OU=PKI-CA,O=BCEAO,C=SN
OpenCA::LDAP->add_object: cn CA
OpenCA::LDAP->add_object: serID 0
OpenCA::LDAP->add_object: email [EMAIL PROTECTED]
OpenCA::LDAP->add_object: ou ARRAY(0x9da73cc)
OpenCA::LDAP->add_object: o BCEAO
OpenCA::LDAP->add_object: l
OpenCA::LDAP->add_object: st
OpenCA::LDAP->add_object: c SN
OpenCA::LDAP->add_object: End of the information of the Object
OpenCA::LDAP->connect: ldap2://certifs:9009
OpenCA::LDAP->setError: 34: invalid DN
OpenCA::LDAP->add_object: Cannot bind to server.
I check in slapd.conf here are the parameters set:
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/pki.schema
allow bind_v2
pidfile /usr/local/var/slapd.pid
argsfile /usr/local/var/slapd.args
argsfile /usr/local/var/slapd.args
database bdb
suffix "o=BCEAO,c=SN"
rootdn "cn=Manager,o=BCEAO,c=SN"
suffix "o=BCEAO,c=SN"
rootdn "cn=Manager,o=BCEAO,c=SN"
rootpw 8958a1ecc1c80204da4ad902d2ec8793
directory /usr/local/var/openldap-data
index objectClass eq
I've already Initialize the LDAP dirrectory with this ldif file convert into utf8 file
dn: o=BCEAO,c=SN
objectclass: organization
o: Banques Centrale des etats de l afrique de l ouest
o:BCEAO
dn: ou=PKI-BANQUE,o=BCEAO,c=SN
objectclass: organizationalUnit
ou:PKI-BANQUE
description: Liste des certificats des banques
objectclass: organizationalUnit
ou:PKI-BANQUE
description: Liste des certificats des banques
dn: ou=PKI-CA,o=BCEAO,c=SN
objectclass: organizationalUnit
ou:PKI-CA
description: Liste de certificats et de CRL de l autorite de certification
objectclass: organizationalUnit
ou:PKI-CA
description: Liste de certificats et de CRL de l autorite de certification
Please what's wrong. Help me. I have this trouble since a week.
Thanks for your help. The base dn of the certificate is the same as the dn base in slapd.conf
Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger
Téléchargez le ici !
