[Fedora-directory-users] SSL issue
Anand Vaddarapu
vaddarapu at gmail.com
Fri Feb 8 00:24:47 UTC 2008
Hi Rich,
I fixed this.
Thanks
On Feb 8, 2008 10:40 AM, Anand Vaddarapu <vaddarapu at gmail.com> wrote:
> Hi Rich,
>
> I am getting new error when i try start the dirsrv-admin.
> #service dirsrv-admin start
> Starting dirsrv-admin:
> syntax error on line 89 of /etc/dirsrv/admin-serv/console.conf:
> NSSNickname takes one argument, SSL RSA server certificate nickname
> (`Server-Cert [failed]
>
>
>
> I tried to add "Server-Cert" at line number 89, still im getting same
> error when i start dirsrv-admin.
>
> Thanks for your help.
>
> Vivek
>
>
> On Feb 8, 2008 10:28 AM, Rich Megginson <rmeggins at redhat.com> wrote:
>
> > Anand Vaddarapu wrote:
> > > Hi Rich,
> > >
> > > Im going through this URL material intructions
> > > http://directory.fedoraproject.org/wiki/Howto:AdminServerLDAPMgmt. but
> > > i could not find the directory that mentioned in the notes cd
> > > /opt/fedora-ds/shared/bin. I installed FDS 1.1 but this notes related
> > > to FDS 1.04 i believe. I think im having some DNS based problems.
> > I changed that wiki page to have instructions that should work with
> > Fedora DS 1.1
> > >
> > > Thanks for your suggestions
> > > Vivek.
> > >
> > >
> > >
> > > On Feb 8, 2008 1:53 AM, Rich Megginson <rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com>> wrote:
> > >
> > > Anand Vaddarapu wrote:
> > > > Hi Rich,
> > > >
> > > > let me breifly explain my settings. I installed FDS in Virtual
> > > > Machine. Virtual Machine is running in windows machine. when i
> > start
> > > > console from VM everything works fine. But when i start console
> > from
> > > > windows machine, will take user logins and hangs while showing
> > > message
> > > > authenticating the user. thats all wont go further i have to
> > > kill the
> > > > console window. virtual machine and Windows are connect using
> > > network
> > > > bridge.
> > > You could try editing the windows console batch file to add -D 9
> > after
> > > the Console class on the java command line - see if that gives you
> > any
> > > more information.
> > >
> > > If you suspect it is a problem with admin server host/ip access
> > > control,
> > > try this -
> > > http://directory.fedoraproject.org/wiki/Howto:AdminServerLDAPMgmt
> > > >
> > > >
> > > > following are the console error logs:
> > > >
> > > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > > ap_get_remote_host could not resolve 10.50.5.79
> > > <http://10.50.5.79> <http://10.50.5.79>
> > > >
> > > >
> > > >
> > > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > > host [piquant] did not match pattern [*.localdomain] -will scan
> > > aliases
> > > >
> > > >
> > > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > > ap_get_remote_host could not resolve 10.50.5.79
> > > <http://10.50.5.79> <http://10.50.5.79>,
> > > >
> > > referer:
> > http://10.50.5.91:17881/admin-serv/tasks/configuration/HTMLAdmin?op=status
> > > >
> > > >
> > > > Severity: [notice][Client10.50.5.79]admserv_host_ip_check
> > > > ap_get_remote_host could not resolve 127.0.0.1
> > > <http://127.0.0.1> <http://127.0.0.1>
> > > >
> > > >
> > > > windows host IP is 10.50.5.89 <http://10.50.5.89>
> > > <http://10.50.5.89> (logs showing
> > > > 10.50.5.79 <http://10.50.5.79> <http://10.50.5.79>, i dont how
> > > that happens)
> > > > VM IP is 10.50.5.91 <http://10.50.5.91> <http://10.50.5.91>
> > > >
> > > > help appreciated.
> > > > Thanks
> > > > Vivek
> > > >
> > > > On Feb 7, 2008 2:36 PM, Rich Megginson <rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com>
> > > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>>
> > wrote:
> > > >
> > > > Anand Vaddarapu wrote:
> > > > > Hi,
> > > > >
> > > > > I can start both dirsrv and dirsrv-admin as well. i can
> > > login into
> > > > > console from local host but can not login from remote
> > > host. any
> > > > ideas?
> > > > > Thanks
> > > > fedora-idm-console -D 9 -f console.log
> > > >
> > > > Any clues in console.log?
> > > > >
> > > > > On Feb 7, 2008 1:42 PM, Rich Megginson
> > > <rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>
> > > > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>>> wrote:
> > > > >
> > > > > Anand Vaddarapu wrote:
> > > > > > Hi,
> > > > > >
> > > > > > I installed with the setupssl2.sh script. with
> > password
> > > > file i can
> > > > > > able to restart dirsrv.
> > > > > But you were having a problem with dirsrv-admin?
> > > > > > is it allowed to login into console more than 1
> > > location after
> > > > > > enabling SSL?
> > > > > Not sure what you mean. Is something not working
> > > correctly?
> > > > > > Thanks
> > > > > > Vivek
> > > > > >
> > > > > > On Feb 7, 2008 1:18 AM, Rich Megginson
> > > > <rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>
> > > > > <mailto:rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com> <mailto:rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com>>>
> > > > > > <mailto:rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com> <mailto:rmeggins at redhat.com
> > > <mailto:rmeggins at redhat.com>>
> > > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>
> > > <mailto:rmeggins at redhat.com <mailto:rmeggins at redhat.com>>>>>
> > wrote:
> > > > > >
> > > > > > Anand Vaddarapu wrote:
> > > > > > > Hi,
> > > > > > >
> > > > > > > Restarted my FDS as soon as enable SSL
> > > service. I try to
> > > > > > restarted my
> > > > > > > dirsrv-admin, its promt me for password. When
> > i
> > > > enter valid
> > > > > > password ,
> > > > > > > the error mesg appers saying "incorrect
> > > password". I m
> > > > > damn sure
> > > > > > that
> > > > > > > entered password was correct. When it happened
> > > to me
> > > > first
> > > > > time i
> > > > > > > tought i forgot password and reinstall the
> > FDS.
> > > > Again happened
> > > > > > second
> > > > > > > time. Please let me know how can i recover
> > > password
> > > > or any
> > > > > > alternative
> > > > > > > way to restart my dirsrv-admin.
> > > > > > Did you see this?
> > > > > >
> > > > >
> > > >
> > >
> > http://directory.fedoraproject.org/wiki/Howto:SSL#Admin_Server_SSL_Information
> > > > > >
> > > > > > How did you configure SSL for the Admin Server?
> > > If you
> > > > > created a
> > > > > > cert/key for the Admin Server, you must have
> > given a
> > > > > password when you
> > > > > > imported the key/cert. If you used the
> > setupssl2.sh
> > > > script (or
> > > > > > setupssl.sh if you are using Fedora DS 1.0.4)
> > > then it
> > > > > created the
> > > > > > password.conf file for you.
> > > > > > >
> > > > > > > Thanks
> > > > > > > Vivek
> > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> > ------------------------------------------------------------------------
> > > > > > >
> > > > > > > --
> > > > > > > Fedora-directory-users mailing list
> > > > > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>
> > > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>>
> > > > > > >
> > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > > > >
> > > > > >
> > > > > >
> > > > > > --
> > > > > > Fedora-directory-users mailing list
> > > > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>
> > > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>>
> > > > > >
> > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > > >
> > > > > >
> > > > > >
> > > > >
> > > >
> > >
> > ------------------------------------------------------------------------
> > > > > >
> > > > > > --
> > > > > > Fedora-directory-users mailing list
> > > > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>
> > > > > >
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > > >
> > > > >
> > > > >
> > > > > --
> > > > > Fedora-directory-users mailing list
> > > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>>
> > > > >
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > >
> > > > >
> > > > >
> > > >
> > >
> > ------------------------------------------------------------------------
> > > > >
> > > > > --
> > > > > Fedora-directory-users mailing list
> > > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > > >
> > > >
> > > >
> > > > --
> > > > Fedora-directory-users mailing list
> > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > <mailto:Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>>
> > > >
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > >
> > > >
> > > >
> > >
> > ------------------------------------------------------------------------
> > > >
> > > > --
> > > > Fedora-directory-users mailing list
> > > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > > >
> > >
> > >
> > > --
> > > Fedora-directory-users mailing list
> > > Fedora-directory-users at redhat.com
> > > <mailto:Fedora-directory-users at redhat.com>
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > >
> > >
> > >
> > ------------------------------------------------------------------------
> > >
> > > --
> > > Fedora-directory-users mailing list
> > > Fedora-directory-users at redhat.com
> > > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> > >
> >
> >
> > --
> > Fedora-directory-users mailing list
> > Fedora-directory-users at redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20080208/ebc099a3/attachment.html>
More information about the 389-users
mailing list