Error Initializing Ssl Error =-8174
Contents |
For Printing -XML -Clone This Bug -Last Comment First Last Prev Next This bug is not in your tls error 8157 certificate extension not found last search results. Bug713525 - ldapsearch fails if no CA certificate is available
Tls Error -8157:certificate Extension Not Found
Summary: ldapsearch fails if no CA certificate is available Status: CLOSED ERRATA Aliases: None Product: Red Hat Enterprise ldaptls_reqcert Linux 6 Classification: Red Hat Component: openldap (Show other bugs) Sub Component: --- Version: 6.1 Hardware: All Linux Priority medium Severity medium TargetMilestone: rc TargetRelease: --- Assigned To: Jan Vcelak QA
Ldapsearch Disable Certificate Verification
Contact: BaseOS QE Security Team Docs Contact: URL: Whiteboard: Keywords: Regression Duplicates: 713371 (view as bug list) Depends On: Blocks: 716854 Show dependency tree /graph Reported: 2011-06-15 13:08 EDT by Najmuddin Chirammal Modified: 2014-06-18 03:08 EDT (History) CC List: 12 users (show) dijuremo hac.bugzilla jplans jvcelak moshiro myllynen omoris ricardo.arguello rmeggins rvokal tsmetana yjog See Also: Fixed In Version: ldaprc openldap-2.4.23-16.el6 Doc Type: Bug Fix Doc Text: - openldap clients configured with TLS_REQCERT=never and TLS_CACERTDIR set to an empty directory - TLS connection to remote server fails as TLS can not be initialized on client side - TLS_CACERTDIR errors are ignored when TLS_REQCERT is set to never - OpenLDAP client tools now have the same behavior as before, when OpenSSL library for SSL/TLS was used (currently we use Mozilla NSS library) Story Points: --- Clone Of: Clones: 716854 (view as bug list) Environment: Last Closed: 2011-12-06 07:12:47 EST Type: --- Regression: --- Mount Type: --- Documentation: --- CRM: Verified Versions: Category: --- oVirt Team: --- RHEL 7.3 requirements from Atomic Host: Cloudforms Team: --- Attachments (Terms of Use) Add an attachment (proposed patch, testcase, etc.) Groups: None (edit) Description Najmuddin Chirammal 2011-06-15 13:08:12 EDT Description of problem: With latest openldap (RHEL6.1) ldapsearch or similar tools fails to contact ldap server if there are no certificates in /etc/openldap/cacerts directory. With the option "LDAPTLS_REQCERT never" the same command works well in the previous version(s) of openldap (openldap-2.4.19-15.el6_0.2 or older) Version-Release number of selected component:openldap-2.4.23-15.el6.x86_
Technology and Trends Enterprise Architecture and EAI ERP Hardware IT Management and Strategy Java Knowledge Management Linux Networking Oracle PeopleSoft Project and Portfolio Management SAP SCM Security Siebel Storage UNIX Visual
Ldapsearch Ignore Self Signed Certificate
Basic Web Design and Development Windows < Back CHOOSE A DISCUSSION GROUP Research Directory
Ldap_start_tls: Connect Error (-11)
TOPICS Database Hardware Networking SAP Security Web Design MEMBERS Paul_Pedant DACREE MarkDeVries MacProTX Inside-ERP VoIP_News Inside-CRM maxwellarnold I_am_the_dragon PCMag Michael ldap_start_tls: can't contact ldap server (-1) Meyers-Jouan TerryCurran Chris_Day Andrew.S.Baker JoeTorre bracke Locutus Ramnath.Awate Dennis Stevenson Craig Borysowich DukeGanote Richard mircea_luca AbhaiTripathi Nikki Klein knowscognosdoi Clinton Jones blrvenkat Iqbalyk bluesguyAZ59 COMPANIES Pivotal CRM GeoTrust Avaya Trend Micro Incorporated View All https://bugzilla.redhat.com/show_bug.cgi?id=713525 Topics View All Members View All Companies Toolbox for IT Topics UNIX Groups Ask a New Question Solaris The Solaris group is a forum where peers share technical expertise, solve problems, and discuss issues related to the Solaris operating system, including OS-related malfunctions, security issues, and network performance. Home | Invite Peers | More UNIX Groups Your account is ready. You're now being signed in. Solve problems http://unix.ittoolbox.com/groups/technical-functional/solaris-l/ssl-initialization-failed-error-8174-security-library-bad-database-3550482 - It's Free Create your account in seconds E-mail address is taken If this is your account,sign in here Email address Username Between 5 and 30 characters. No spaces please The Profile Name is already in use Password Notify me of new activity in this group: Real Time Daily Never Keep me informed of the latest: White Papers Newsletter Jobs By clicking "Join Now", you agree to Toolbox for Technology terms of use, and have read and understand our privacy policy. SSL initialization failed: error -8174 (security library: bad database.) rahul s asked Jun 4, 2010 | Replies (1) Hi I am getting the same error again even after creating the cert8.db and key, I am using openldap on solaris 10, the make test was okay.Please guide me on how to get going on this one.I am not able to do anything with ldap server just because of this error. Join this group Popular White Paper On This Topic 3 Essential Components for a Strong End User Security Strategy 1Reply Best Answer 0 Mark this reply as the best answer?(Choose carefully, this can't be changed) Yes | No Saving... rahul s replied Jun 4, 2010 Installed openldap 4.4.20, Bdb 4.7, op
[ thread ] [ subject ] [ author ] Thanks for that, about 2 hours after writing the email, I got it all working :) Now the log https://lists.fedoraproject.org/pipermail/389-users/2011-August/013544.html simply states; 08/25/11 18:41:21: PassSync service initialized 08/25/11 18:41:21: PassSync service running cya Craig On Thu, Aug 25, 2011 at 07:23:10AM -0600, Rich Megginson wrote: > On 08/24/2011 11:55 PM, Craig https://java.net/projects/opends/lists/users/archive/2008-02/message/67 T wrote: > >Hi, > > > >Setup: > >Fedora 15 x64 > >* 389-admin-1.1.16-1.fc15.x86_64 > >* 389-admin-console-1.1.7-2.fc15.noarch > >* 389-admin-console-doc-1.1.7-2.fc15.noarch > >* 389-adminutil-1.1.13-2.fc15.x86_64 > >* 389-console-1.1.4-2.fc15.noarch > >* 389-ds-base-1.2.8.3-1.fc15.x86_64 > tls error >* 389-ds-base-libs-1.2.8.3-1.fc15.x86_64 > >* 389-ds-console-1.2.5-1.fc15.noarch > >* 389-ds-console-doc-1.2.5-1.fc15.noarch > > > >Windows 2008 R2 x64 > >* Microsoft Active Directory > >* Windows Password Sync v1.1.4 x64 > > > >I'm just attempting to setup 389 Directory Server password sync to Microsoft Active Directory. > >I have managed to get successfull user account (ldap info) sync without passwords, it's just the .msi password certificate extension not sync program that I'm having issues with. > > > >Error from passsync.log: > >08/25/11 14:46:43: PassSync service initialized > >08/25/11 14:46:43: PassSync service running > >08/25/11 14:46:44: Error initializing SSL: err=-8174 > >08/25/11 14:46:44: Ensure that your SSL is setup correctly > >08/25/11 14:46:58: PassSync service stopped > > > > > >Anyone know how I can add debugging to the windows app? or ideas on what a -8174 error means? > >I thought SSL was setup correctly on the directory server (it certainly responds to a telnet
Mailing List Use Advanced Search to search the entire archive. Re: [OpenDS-users] certificate database problem » Back to List Archive Chronological | Threaded « Previous Message Next » « Previous Thread Next » From: Ludovic Poitou