On 11/25/2013 06:26 PM, Gordon Messmer wrote:
On 11/25/2013 03:54 PM, Rich Megginson wrote:
Is there some reason you need to upgrade from the OS provided official
RHEL 6.4 version of 389-ds-base to the non-OS provided version from the
rmeggins epel6 repo?
I no longer remember why that's there, actually. I feel like there
was a feature not available in the RH packages, but have forgotten
exactly what.
I would suggest just using the 389-ds-base package that comes with RHEL 6.
Are you using attribute encryption?
No, not as far as I know.
Ok.
The error message is saying that it cannot find your unlocked server SSL
key. I am assuming this all worked before, and you have a pin.txt file
and/or you have permanently unlocked your key/cert db.
The key/cert db has one key which requires no passphrase, the
corresponding certificate, and the certificates of the CA (StartSSL).
If you do
certutil -d /etc/dirsrv/slapd-* -K
does it prompt you for a password/pin?
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
