[389-users] 389 Console & setup SSL with MMR
Rich Megginson
rmeggins at redhat.com
Wed Oct 12 19:49:32 UTC 2011
On 10/11/2011 05:43 AM, Pieter Baele wrote:
> Hi,
>
> I used 389 Directory Server in the past.... but it has been a long time...
>
> Problem 1:
> ---------------
> When I start 389-console on top of an ssh session with X, I can't use
> the input boxes...
> (solved by a local installation of 389-ds but...)
>
> Problem 2:
> ---------------
> I see for an easy setup of multimaster replication with SSL, I can
> still use setupssl2.sh and mmr.pl
> scripts :-)
>
> But what's the right order?
>
> After setup-ds-admin.pl I first ran setupssl2.sh and then I tried to setup mmr.
> I've this fault when I choose --with-ssl.... (replication without ssl works)
>
> [11/Oct/2011:13:15:51 +0200] slapi_ldap_bind - Error: could not send
> bind request for id [cn=repman,cn=config] mech [SIMPLE]: error -1
> (Can't contact LDAP server) -8054 (You are attempting to import a cert
> with the same issuer/serial as an existing cert, but that is not the
> same cert.) 107 (Transport endpoint is not connected)
>
> (with the normal replication I also see netscapeRoot, not userRoot)
The -m argument when creating a new cert is significant - it must be
globally unique. The -m argument is where you specify the serial number.
> Sincerely,
> PieterB
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
More information about the 389-users
mailing list