[389-users] Fwd: Some cipher suites not working
Rich Megginson
rmeggins at redhat.com
Fri Jul 19 14:00:21 UTC 2013
On 07/19/2013 06:43 AM, Darcy Hodgson wrote:
> Hello,
>
> I have been setting up SSL/TLS with 389 DS on CentOS 6.4. I have been
> able to get it working and can connect with LDAPS. However when I
> started to disabled some of the ciphers I noticed that my server
> wasn't accepting any of the DHE ciphers. I enabled all the ciphers
> with +all and used sslmap to confirm that the server was only choosing
> RSA.
>
> I checked the logs and the only thing they say is "Cannot communicate
> securely with peer: no common encryption algorithm(s)."
>
> Any help getting the DHE ciphers to work or pointing me to some
> documentation would be appreciated.
Can you please provide the exact steps to reproduce the issue? Please
include the versions of the nspr, nss, openldap, and 389-ds-base packages.
Have you tried openssl s_client?
>
>
> Thanks,
>
> Darcy
>
>
>
>
>
>
> --
> 389 users mailing list
> 389-users at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/389-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20130719/0296dc27/attachment.html>
More information about the 389-users
mailing list