Am Thu, 17 Dec 2015 18:02:02 +0300 schrieb Andrei Valoshyn <[email protected]>:
> >> >Hello guys! > >> >I tried to deploy openldap replica on Ubuntu 14.04. I copy > >> >database via slapcat(slapadd) and slapd.conf from another > >> >replica(Centos 6.7 with OpenLDAP: slapd 2.4.40). > >> >After all slaptest errors were fixed slapd service run once, but > >> >after 5 minutes without any changes it's failed to start again and > >> >currently it's still doesn't work. I can't find any ldap log. > >> > > >> >May be somebody faced with such kind of the problem. Will be very > >> >appreciate for any advices > >> > > > run both slapd(8) in debugging mode and level stats sync > > > > -Dieter > > > > -- Dieter Kl?nter | Systemberatung http://sys4.de GPG Key ID: > > E9ED159B 53?37'09,95"N 10?08'02,42"E > In debug slapd -d -1 output I saw that ldap is trying to load from > /etc/ldap/slap.d/ directory although i had put > "SLAPD_CONF=/etc/ldap/slapd.conf" to /etc/default/slapd. After I > clean up /etc/ldap/slap.d/ directory ldap starting load db and > schema, but still can't start with error: > " > TLS: could not set cipher list HIGH:+TLSv1:+SSLv2:+SSLv3. > 56728db6 main: TLS init def ctx failed: -1 > 56728db6 slapd destroy: freeing system resources. > 56728db6 syncinfo_free: rid=115 > 56728db6 slapd stopped. > 56728db6 connections_destroy: nothing to destroy. > " > When I try "openssl ciphers -v HIGH:+TLSv1:+SSLv2:+SSLv3" it's work > fine without any error > On 12/16/2015 03:00 PM, [email protected] wrote: > OpenLDAP has probably been compiled with an other SSL library like GnuTLS or MOZNSS. -Dieter -- Dieter Klünter | Systemberatung http://sys4.de GPG Key ID: E9ED159B 53°37'09,95"N 10°08'02,42"E
