Hi,
My 389-ds is using SSL in Directory Server. Once I checked the checkbox in Admin Server to use SSL and try to restart it (admin) it is failing. The logs says as below:
[Tue Sep 23 05:20:35 2014] [notice] SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0
[Tue Sep 23 05:20:36 2014] [crit] sslinit: NSS is required to use LDAPS, but security initialization failed [-12285:Unable to find the certificate or key necessary for authentication.]. Cannot start server
[root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/admin-serv -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
[root@vm-ser-master-01 admin-serv]#
[root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/slapd-vm-ser-master-01/ -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
ca.initd.in CT,,
server-cert u,u,u
[root@vm-ser-master-01 admin-serv]#
[Tue Sep 23 05:20:35 2014] [notice] SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0
[Tue Sep 23 05:20:36 2014] [crit] sslinit: NSS is required to use LDAPS, but security initialization failed [-12285:Unable to find the certificate or key necessary for authentication.]. Cannot start server
[root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/admin-serv -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
[root@vm-ser-master-01 admin-serv]#
[root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/slapd-vm-ser-master-01/ -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
ca.initd.in CT,,
server-cert u,u,u
[root@vm-ser-master-01 admin-serv]#
I also tried disbaling SSL to revert back but it is failing and No messages in Log. Please suggest further to fix or revert this.
Best Regards,
__________________________________________
-- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
