Hi
I am trying to enable tls based session with openldap from a client. I
created a self signed certificate based on command from
http://www.openldap.org/pub/ksoper/OpenLDAP_TLS.html#4.1
My server.pem file is in /etc/openldap directory where slapd.conf is located.
Here are further settings in my slapd.conf
TLSCACertificateFile server.pem
TLSCertificateFile server.pem
TLSCertificateKeyFile server.pem
TLSVerifyClient never
When I restart the ldap, it gives me the following warnings.
is not readable by "ldap" [WARNING]
is not readable by "ldap" [WARNING]
is not readable by "ldap" [WARNING]
Checking configuration files for slapd: [ OK ]
Starting slapd: [ OK ]
I have checked the ps output and it is started as:
ldap 6883 1 0 16:18 ? 00:00:00 /usr/sbin/slapd -u
ldap -h ldap:/// ldaps:///
AND
netstat -anp | grep slapd
tcp 0 0 0.0.0.0:389 0.0.0.0:*
LISTEN 7850/slapd
tcp 0 0 0.0.0.0:636 0.0.0.0:*
LISTEN 7850/slapd
tcp 0 0 ip:389 ip:43165
ESTABLISHED 7850/slapd
tcp 0 0 :::389 :::*
LISTEN 7850/slapd
tcp 0 0 :::636 :::*
LISTEN 7850/slapd
unix 2 [ ] DGRAM 302231743 7850/slapd
Regards,
rui
