Anand Vaddarapu wrote:
Hi,
After enabling SSL with console using the procedure
_http://directory.fedoraproject.org/wiki/Howto:SSL#Console_SSL_Information_
i am getting these following error messages when i am trying to login
into directory server in the console. SSL is enabled in both the admin
console & the Ldap server
From logs:
[27/Mar/2008:14:56:24 +1100] conn=47 fd=66 slot=66 SSL connection
from 10.50.5.81 <
http://10.50.5.81> to 10.50.1.24 <
http://10.50.1.24>
[27/Mar/2008:14:56:24 +1100] conn=47 op=-1 fd=66 closed - SSL peer
cannot verify your certificate.
ls -al ~/.fedora-idm-console
certutil -L -d ~/.fedora-idm-console
we are these when starting the Ldap server
27/Mar/2008:14:45:04 +1100] - attrcrypt_unwrap_key: failed to unwrap
key for cipher AES
[27/Mar/2008:14:45:04 +1100] - Failed to retrieve key for cipher AES
in attrcrypt_cipher_init
[27/Mar/2008:14:45:04 +1100] - Failed to initialize cipher AES in
attrcrypt_init
[27/Mar/2008:14:45:04 +1100] - attrcrypt_unwrap_key: failed to unwrap
key for cipher AES
[27/Mar/2008:14:45:04 +1100] - Failed to retrieve key for cipher AES
in attrcrypt_cipher_init
[27/Mar/2008:14:45:04 +1100] - Failed to initialize cipher AES in
attrcrypt_init
[27/Mar/2008:14:45:05 +1100] - slapd started. Listening on All
Interfaces port 389 for LDAP requests
[27/Mar/2008:14:45:05 +1100] - Listening on All Interfaces port 636
for LDAPS requests
Console error message:
netscape.ldap.LDAPException:JSSSocketFactory.makeSocket
devil.wcg.net.au:636 <
http://devil.wcg.net.au:636>, SSL_ForceHandshake
failed: (-8054) unknown error (91)
Help Appreciated.
Thanks
------------------------------------------------------------------------
--
Fedora-directory-users mailing list
Fedora-directory-users(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users