[Fedora-directory-users] SSL issue
Anand Vaddarapu
vaddarapu at gmail.com
Thu Feb 7 23:40:55 UTC 2008
Hi Rich,
I am getting new error when i try start the dirsrv-admin.
#service dirsrv-admin start
Starting dirsrv-admin:
syntax error on line 89 of /etc/dirsrv/admin-serv/console.conf:
NSSNickname takes one argument, SSL RSA server certificate nickname
(`Server-Cert [failed]
I tried to add "Server-Cert" at line number 89, still im getting same error
when i start dirsrv-admin.
Thanks for your help.
Vivek
On Feb 8, 2008 10:28 AM, Rich Megginson <rmeggins at redhat.com> wrote:
> Anand Vaddarapu wrote:
> > Hi Rich,
> >
> > Im going through this URL material intructions
> > http://directory.fedoraproject.org/wiki/Howto:AdminServerLDAPMgmt. but
> > i could not find the directory that mentioned in the notes cd
> > /opt/fedora-ds/shared/bin. I installed FDS 1.1 but this notes related
> > to FDS 1.04 i believe. I think im having some DNS based problems.
> I changed that wiki page to have instructions that should work with
> Fedora DS 1.1
> >
> > Thanks for your suggestions
> > Vivek.
> >
> >
> >
> > On Feb 8, 2008 1:53 AM, Rich Megginson <rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com>> wrote:
> >
> > Anand Vaddarapu wrote:
> > > Hi Rich,
> > >
> > > let me breifly explain my settings. I installed FDS in Virtual
> > > Machine. Virtual Machine is running in windows machine. when i
> start
> > > console from VM everything works fine. But when i start console
> from
> > > windows machine, will take user logins and hangs while showing
> > message
> > > authenticating the user. thats all wont go further i have to
> > kill the
> > > console window. virtual machine and Windows are connect using
> > network
> > > bridge.
> > You could try editing the windows console batch file to add -D 9
> after
> > the Console class on the java command line - see if that gives you
> any
> > more information.
> >
> > If you suspect it is a problem with admin server host/ip access
> > control,
> > try this -
> > http://directory.fedoraproject.org/wiki/Howto:AdminServerLDAPMgmt
> > >
> > >
> > > following are the console error logs:
> > >
> > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > ap_get_remote_host could not resolve 10.50.5.79
> > <http://10.50.5.79> <http://10.50.5.79>
> > >
> > >
> > >
> > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > host [piquant] did not match pattern [*.localdomain] -will scan
> > aliases
> > >
> > >
> > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > ap_get_remote_host could not resolve 10.50.5.79
> > <http://10.50.5.79> <http://10.50.5.79>,
> > >
> > referer:
> http://10.50.5.91:17881/admin-serv/tasks/configuration/HTMLAdmin?op=status
> > >
> > >
> > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > ap_get_remote_host could not resolve 127.0.0.1
> > <http://127.0.0.1> <http://127.0.0.1>
> > >
> > >
> > > windows host IP is 10.50.5.89 <http://10.50.5.89>
> > <http://10.50.5.89> (logs showing
> > > 10.50.5.79 <http://10.50.5.79> <http://10.50.5.79>, i dont how
> > that happens)
> > > VM IP is 10.50.5.91 <http://10.50.5.91> <http://10.50.5.91>
> > >
> > > help appreciated.
> > > Thanks
> > > Vivek
> > >
> > > On Feb 7, 2008 2:36 PM, Rich Megginson <rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>> wrote:
> > >
> > > Anand Vaddarapu wrote:
> > > > Hi,
> > > >
> > > > I can start both dirsrv and dirsrv-admin as well. i can
> > login into
> > > > console from local host but can not login from remote
> > host. any
> > > ideas?
> > > > Thanks
> > > fedora-idm-console -D 9 -f console.log
> > >
> > > Any clues in console.log?
> > > >
> > > > On Feb 7, 2008 1:42 PM, Rich Megginson
> > <rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>
> > > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>>> wrote:
> > > >
> > > > Anand Vaddarapu wrote:
> > > > > Hi,
> > > > >
> > > > > I installed with the setupssl2.sh script. with
> password
> > > file i can
> > > > > able to restart dirsrv.
> > > > But you were having a problem with dirsrv-admin?
> > > > > is it allowed to login into console more than 1
> > location after
> > > > > enabling SSL?
> > > > Not sure what you mean. Is something not working
> > correctly?
> > > > > Thanks
> > > > > Vivek
> > > > >
> > > > > On Feb 7, 2008 1:18 AM, Rich Megginson
> > > <rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>
> > > > <mailto:rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com> <mailto:rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com>>>
> > > > > <mailto:rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com> <mailto:rmeggins at redhat.com
> > <mailto:rmeggins at redhat.com>>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>>>> wrote:
> > > > >
> > > > > Anand Vaddarapu wrote:
> > > > > > Hi,
> > > > > >
> > > > > > Restarted my FDS as soon as enable SSL
> > service. I try to
> > > > > restarted my
> > > > > > dirsrv-admin, its promt me for password. When i
> > > enter valid
> > > > > password ,
> > > > > > the error mesg appers saying "incorrect
> > password". I m
> > > > damn sure
> > > > > that
> > > > > > entered password was correct. When it happened
> > to me
> > > first
> > > > time i
> > > > > > tought i forgot password and reinstall the FDS.
> > > Again happened
> > > > > second
> > > > > > time. Please let me know how can i recover
> > password
> > > or any
> > > > > alternative
> > > > > > way to restart my dirsrv-admin.
> > > > > Did you see this?
> > > > >
> > > >
> > >
> >
> http://directory.fedoraproject.org/wiki/Howto:SSL#Admin_Server_SSL_Information
> > > > >
> > > > > How did you configure SSL for the Admin Server?
> > If you
> > > > created a
> > > > > cert/key for the Admin Server, you must have given
> a
> > > > password when you
> > > > > imported the key/cert. If you used the
> setupssl2.sh
> > > script (or
> > > > > setupssl.sh if you are using Fedora DS 1.0.4)
> > then it
> > > > created the
> > > > > password.conf file for you.
> > > > > >
> > > > > > Thanks
> > > > > > Vivek
> > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
> ------------------------------------------------------------------------
> > > > > >
> > > > > > --
> > > > > > Fedora-directory-users mailing list
> > > > > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>>
> > > > > >
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > > >
> > > > >
> > > > >
> > > > > --
> > > > > Fedora-directory-users mailing list
> > > > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>>
> > > > >
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > >
> > > > >
> > > > >
> > > >
> > >
> >
> ------------------------------------------------------------------------
> > > > >
> > > > > --
> > > > > Fedora-directory-users mailing list
> > > > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>
> > > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > >
> > > >
> > > >
> > > > --
> > > > Fedora-directory-users mailing list
> > > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>>
> > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > >
> > > >
> > > >
> > >
> >
> ------------------------------------------------------------------------
> > > >
> > > > --
> > > > Fedora-directory-users mailing list
> > > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > >
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > >
> > >
> > >
> > > --
> > > Fedora-directory-users mailing list
> > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > <mailto:Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>>
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > >
> > >
> > >
> >
> ------------------------------------------------------------------------
> > >
> > > --
> > > Fedora-directory-users mailing list
> > > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > >
> >
> >
> > --
> > Fedora-directory-users mailing list
> > Fedora-directory-users at redhat.com
> > <mailto:Fedora-directory-users at redhat.com>
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> >
> >
> > ------------------------------------------------------------------------
> >
> > --
> > Fedora-directory-users mailing list
> > Fedora-directory-users at redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> >
>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20080208/d72ea9fb/attachment.html>
More information about the 389-users
mailing list