Re: Fwd: Some cipher suites not working

Rich Megginson <rmeggins@xxxxxxxxxx> · Fri, 19 Jul 2013 08:00:21 -0600



    On 07/19/2013 06:43 AM, Darcy Hodgson
      wrote:

    
      Hello,

        
        I have been setting up SSL/TLS with 389 DS on CentOS 6.4. I have
        been able to get it working and can connect with LDAPS. However
        when I started to disabled some of the ciphers I noticed that my
        server wasn't accepting any of the DHE ciphers. I enabled all
        the ciphers with +all and used sslmap to confirm that the server
        was only choosing RSA.

        
        I checked the logs and the only thing they say is "Cannot
        communicate securely with peer: no common encryption
        algorithm(s)."

        
        Any help getting the DHE ciphers to work or pointing me to some
        documentation would be appreciated.

      
    Can you please provide the exact steps to reproduce the issue? 
    Please include the versions of the nspr, nss, openldap, and
    389-ds-base packages.

    Have you tried openssl s_client?

    
        Thanks,

        
        Darcy

        
      --
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
    
    
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users