Hi Dan, I found three libraries in mangpages of slapd-config i.e., OpenSSL, GnuTLS, or Mozilla NSS
On Tue, Jul 14, 2015 at 10:31 PM, Howard Chu <[email protected]> wrote: > Dan White wrote: > >> On 07/14/15 03:45 +0500, Aneela Saleem wrote: >> >>> but when i run the search command: i.e., >>> *ldapsearch -x -b "dc=platalytics,dc=com" -H 'ldap://localhost:389' -ZZ* >>> >>> i get the following error: >>> >>> ldap_start_tls: Protocol error (2) >>> additional info: unsupported extended operation >>> >> >> Which ssl library is your slapd compiled against? See the slapd-config >> manpage for appropriate configuration for your ssl lib. >> >> Following is my *cn=config.ldif* file: >>> >> > This is not a valid file. > > > # AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify. >>> # CRC32 0cd16f20 >>> dn: cn=config >>> objectClass: olcGlobal >>> cn: config >>> >>> *TLSCertificateFile: /etc/ldap/servercrt.pem* >>> *TLSCertificateKeyFile: /etc/ldap/serverkey.pem* >>> *TLSCACertificateFile: /etc/ldap/cacert.pem* >>> >> >> Assuming these are correct paths, verify permissions to these files, and >> check them again. >> >> Enable logging/debugging on the server side to trouble shoot. >> >> olcArgsFile: /var/run/slapd/slapd.args >>> olcLogLevel: none >>> olcPidFile: /var/run/slapd/slapd.pid >>> olcToolThreads: 1 >>> structuralObjectClass: olcGlobal >>> entryUUID: 59729584-bdf0-1034-90b9-fdf431101d87 >>> creatorsName: cn=config >>> createTimestamp: 20150713211745Z >>> entryCSN: 20150713211745.443612Z#000000#000#000000 >>> modifiersName: cn=config >>> modifyTimestamp: 20150713211745Z >>> >> >> > > -- > -- Howard Chu > CTO, Symas Corp. http://www.symas.com > Director, Highland Sun http://highlandsun.com/hyc/ > Chief Architect, OpenLDAP http://www.openldap.org/project/ >
