LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 07-07-2005, 09:36 AM   #1
mumux
LQ Newbie
 
Registered: May 2005
Location: Romania
Distribution: CentOS 4.1
Posts: 8

Rep: Reputation: 0
Talking start LDAP on CENTOS!


hello!
I want to start ldap on my CentOS but I can't!

[root@xxx /]# service ldap start
Checking configuration files for : config file testing succeeded
Starting slapd: [FAILED]

Can somebody help?

Thanks!
Bye!
 
Old 07-07-2005, 09:53 AM   #2
trickykid
Guru
 
Registered: Jan 2001
Posts: 24,133

Rep: Reputation: 197Reputation: 197
"My car won't start after I try with the ignition key? Help, fix it?" <- An example of your post cause without anymore details, were not going to be much help to you.

If you post configuration files, versions, if you installed LDAP yourself or if it was installed during the initial OS installation.. etc, always helps determine what your problem might be. Have you checked your logs for more output of what the problem might be?
 
Old 07-07-2005, 11:07 AM   #3
mumux
LQ Newbie
 
Registered: May 2005
Location: Romania
Distribution: CentOS 4.1
Posts: 8

Original Poster
Rep: Reputation: 0
Red face

Sorry!

I didn't install LDAP.
I've installed CENTOS full and it comes with LDAP.
If i go in /usr/sbin i can find "slapd",and if i start it from here i have no errors.

[root@xxx]#./slapd (i have no errors)

[root@aka init.d]# chkconfig --list | grep ldap
ldap 0: off 1: off 2: off 3: off 4: off 5: on 6: off (from this I understand that ldap is started in run-level 5)

[root@aka init.d]# ./ldap start
Checking configuration files for : config file testing succeeded
Starting slapd: [FAILED] (the "slapd" daemon won't start)

I don't know where is LDAP's error log
 
Old 07-08-2005, 08:29 AM   #4
mumux
LQ Newbie
 
Registered: May 2005
Location: Romania
Distribution: CentOS 4.1
Posts: 8

Original Poster
Rep: Reputation: 0
[root@xxx sbin]# ./slapd -d 2
@(#) $OpenLDAP: slapd 2.2.13 (Feb 21 2005 17:26:02) $
buildcentos@bhrama.build.karan.org:/home/buildcentos/building/BUILD/openldap-2.2.13/openldap-2.2.13/build-servers/servers/slapd
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_db_init: Initializing BDB database
TLS: could not load client CA list (file:`',dir:`/etc/openldap/cacerts').
TLS: error:0200A002:system library:opendir:No such file or directory ssl_cert.c:750
TLS: error:140D7002:SSL routines:SSL_add_dir_cert_subjects_to_stack:system lib ssl_cert.c:752
main: TLS init def ctx failed: -1
slapd stopped.
connections_destroy: nothing to destroy.

I think this is these are the problems! :D
Help!
 
Old 08-09-2005, 06:02 AM   #5
mink
Newbie
 
Registered: Aug 2005
Posts: 1

Rep: Reputation: 0
uncomment the last three lines in the following section of /etc/openldap/slapd.conf

# The next three lines allow use of TLS for encrypting connections using a
# dummy test certificate which you can generate by changing to
# /usr/share/ssl/certs, running "make slapd.pem", and fixing permissions on
# slapd.pem so that the ldap user or group can read it. Your client software
# may balk at self-signed certificates, however.
TLSCACertificateFile /usr/share/ssl/certs/ca-bundle.crt
TLSCertificateFile /usr/share/ssl/certs/slapd.pem
TLSCertificateKeyFile /usr/share/ssl/certs/slapd.pem

I had the same problem, and after pulling my hair out, this solution worked. Apparently, the default location of cacerts is /usr/openldap/cacerts not /usr/share/ssl/certs/

I hope that helps
 
Old 08-10-2005, 06:00 PM   #6
Flyen
LQ Newbie
 
Registered: Apr 2004
Distribution: Fedora 5 and CentOS 4
Posts: 21

Rep: Reputation: 15
Quote:
Apparently, the default location of cacerts is /usr/openldap/cacerts not /usr/share/ssl/certs/
Btw, to fix this, I had to uncomment the "TLS_CACERTDIR" line in /etc/openldap/ldap.conf like so:

#TLS_CACERTDIR /etc/openldap/cacerts

..then add a line at the end that read:

TLS_CACERT /usr/share/ssl/certs/slapd.pem

Hope this works (it's my first time playing with ldap
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Whats the differnce between Centos and CentOS? duffmckagan cAos 1 06-12-2005 12:23 PM
update centos 4 rc1 to centos 4 trou yum? maxut cAos 2 03-04-2005 02:36 AM
Error when start service after remove LDAP blackyzero Linux - Networking 0 09-29-2004 11:02 PM
ldap-abook unable to get street name in ldap-entry Jingle Linux - Software 1 06-06-2004 07:13 PM
Need LDAP-Netmeeting to start automatically byersjlpa Linux - Newbie 1 03-18-2002 02:55 PM


All times are GMT -5. The time now is 05:16 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration