Also just affected me on upgrade from karmic to lucid, using mysql. This
just cost me a couple of hours, so I definitely vote in favor of having
this handled properly during upgrade, especially as it affects LTS->LTS
upgrades.
--
You received this bug notification because you are a member of Ubun
Public bug reported:
For puppet 2.7.1-1ubuntu3.5~maverick1 running on maverick server, the
agent fails to be able to obtain catalogs from the puppetmaster, due to
a failure to validate the ca certificate.
This is a dangerous bug as it appears when following the instructions in
the server guide fo
Public bug reported:
I am running a nagios3 server on ubuntu 10.04 server (nagios3
3.2.0-4ubuntu2.2) and a nrpe server on ubuntu 10.10 (nagios-nrpe-server
2.12-4ubuntu1.10.10.1, nagios-plugins 1.4.14-5ubuntu3)
Have these both basically up and running, and the server is able to run
a check_disk c
Public bug reported:
Binary package hint: libldap-2.4-2
Trying to run a slapd server in Ubuntu 9.04, generally following the
docs at: https://help.ubuntu.com/9.04/serverguide/C/openldap-
server.html.
It works fine until I try and use certificates as per the section TLS
and SSL on that page.
The
** Changed in: openldap (Ubuntu)
Status: Invalid => New
--
ldap tls refusing to initialize
https://bugs.launchpad.net/bugs/420277
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
--
Ubuntu-server-bugs mailing li
Thanks Mr. Gug. I checked this, placing the apparmor profile into
complain mode with sudo aa-complain /usr/sbin/slapd.
The same problem occurs with an attempt to start slapd, but there are no
entries in /var/log/kern.log associated and no audit entries.
I also moved the certificates and keys gene
Interesting that there is the TLS complaint through "TLS: gcry_control
..."
Nothing like that in mine. I was looking through the source a bit last
night on this. It seems that the TLS init call is returning a -1 error
code under some circumstances without really throwing another error
message.
De
Interesting. My version also was an upgrade from
hardy->intrepid->jaunty. My /etc/ldap/ldap.conf doesn't contain a line
about TLS_RANDFILE though, and my install doesn't report the TLS:
gcry_control error, rather, there is nothing other than the "main: TLS
init def ctx failed: -1" complaint. I sus
Playing around with the source today and debugging slapd with gdb.
It appears that much of the pain here is in tls_g.c, the wrappers for
gnutls. The function tlsg_ctx_init in particular. This is where, at
least for my configuration, most of the failures are occurring. And the
code in this function
Yes, continues to be annoying.
One thing to do is to carefully verify the certificate chain you have
configured for LDAP use. If the certificate is self-signed, then don't
configure the olcCACertificateFile item. Otherwise, make sure the CA
signing the certificate has its certificate in this prope
Thanks Dave. I agree about the docs on this. Can you comment on which
howto you were using?
--
ldap tls refusing to initialize
https://bugs.launchpad.net/bugs/420277
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
--
For the time being, I posted an update for the network-auth.xml in
ubuntu-docs.
https://bugs.launchpad.net/ubuntu/+source/ubuntu-docs/+bug/437483
--
ldap tls refusing to initialize
https://bugs.launchpad.net/bugs/420277
You received this bug notification because you are a member of Ubuntu
Server
12 matches
Mail list logo
