From: Bob Cregan (bob.cregan@maths.bath.ac.uk)
Date: Wed Dec 22 2004 - 11:18:18 EST
Hi
I'm trying to get a secure connection from rpc.nisd (on a fully
patched solaris 9 machine) to an openldap server. The server end works
well with several independent ldap clients, but the sun client does not
work.
Running
nisldapmaptest -o -t passwd
gives the following error
Failed to initialize SSL client: 'security library: bad database.'
the entry in the file /etc/default/rpc.nisd for the TLS stuff is
####################################################################
# Transport layer security for mapping data to/from LDAP.
#
nisplusLDAPTLS=ssl
# Certificate DB for transport layer security
nisplusLDAPTLSCertificateDBPath=/var/nis/filename-cert.pem
####################################################################
where the file /var/nis/filename-cert.pem is a self signed certificate
produced by openssl. The available documentation talks of a "
certificate DB file" . Is this not a plan text file? Do we have to
process an openssl certificate somehow to get a "certificate DB" or do
we have to load the CA certificate somewhere?
Thanks in anticipation
Bob
------------------------------------------------------------
Bob Cregan
Unix Systems Administrator
Department of Mathematical Sciences,
The University of Bath
Claverton Down
Bath BA2 7AY
phone 01225 386068
mail bob.cregan@maths.bath.ac.uk
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:29:55 EDT