<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 07/19/2013 06:43 AM, Darcy Hodgson
wrote:<br>
</div>
<blockquote
cite="mid:CAN5N0sGAfUZjMJm4kfMRy_xx5=kAmz461m2_ZwZM_O8sbbg4dw@mail.gmail.com"
type="cite">
<div dir="ltr">Hello,<br>
<br>
I have been setting up SSL/TLS with 389 DS on CentOS 6.4. I have
been able to get it working and can connect with LDAPS. However
when I started to disabled some of the ciphers I noticed that my
server wasn't accepting any of the DHE ciphers. I enabled all
the ciphers with +all and used sslmap to confirm that the server
was only choosing RSA.<br>
<br>
I checked the logs and the only thing they say is "Cannot
communicate securely with peer: no common encryption
algorithm(s)."<br>
<br>
Any help getting the DHE ciphers to work or pointing me to some
documentation would be appreciated.<br>
</div>
</blockquote>
<br>
Can you please provide the exact steps to reproduce the issue?
Please include the versions of the nspr, nss, openldap, and
389-ds-base packages.<br>
Have you tried openssl s_client?<br>
<br>
<blockquote
cite="mid:CAN5N0sGAfUZjMJm4kfMRy_xx5=kAmz461m2_ZwZM_O8sbbg4dw@mail.gmail.com"
type="cite">
<div dir="ltr">
<br>
<br>
Thanks,<br>
<br>
Darcy<br>
<div class="gmail_quote">
<div dir="ltr">
<div class="gmail_quote">
<div dir="ltr">
<div>
<div class="h5">
<div><br>
</div>
<div><br>
</div>
</div>
</div>
</div>
</div>
<br>
</div>
</div>
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">--
389 users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>
<a class="moz-txt-link-freetext" href="https://admin.fedoraproject.org/mailman/listinfo/389-users">https://admin.fedoraproject.org/mailman/listinfo/389-users</a></pre>
</blockquote>
<br>
</body>
</html>