Hi Yogesh, seems there's no certificate in admin server. I don't see how you could enable ssl in admin and not have any certificate in admin certificate db. To disable ssl, you could follow this article: https://access.redhat.com/solutions/762573 Thanks and regards, German. ----- Original Message ----- > From: "Yogesh Sharma" <yks0000@xxxxxxxxx> > To: 389-users@xxxxxxxxxxxxxxxxxxxxxxx > Sent: Tuesday, September 23, 2014 1:54:12 AM > Subject: Issue Starting Admin Server after Enabling SSL in Admin Server. > > Hi, > > > My 389-ds is using SSL in Directory Server. Once I checked the checkbox in > Admin Server to use SSL and try to restart it (admin) it is failing. The > logs says as below: > > [Tue Sep 23 05:20:35 2014] [notice] SELinux policy enabled; httpd running as > context unconfined_u:system_r:httpd_t:s0 > [Tue Sep 23 05:20:36 2014] [crit] sslinit: NSS is required to use LDAPS, but > security initialization failed [-12285:Unable to find the certificate or key > necessary for authentication.]. Cannot start server > > > [root@vm-ser-master-01 admin-serv]# certutil -d /etc/dirsrv/admin-serv -L > > Certificate Nickname Trust Attributes > SSL,S/MIME,JAR/XPI > > [root@vm-ser-master-01 admin-serv]# > > > > [root@vm-ser-master-01 admin-serv]# certutil -d > /etc/dirsrv/slapd-vm-ser-master-01/ -L > > Certificate Nickname Trust Attributes > SSL,S/MIME,JAR/XPI > > ca.initd.in CT,, > server-cert u,u,u > [root@vm-ser-master-01 admin-serv]# > > > I also tried disbaling SSL to revert back but it is failing and No messages > in Log. Please suggest further to fix or revert this. > > > Best Regards, > __________________________________________ > Yogesh Sharma > > > > -- > 389 users mailing list > 389-users@xxxxxxxxxxxxxxxxxxxxxxx > https://admin.fedoraproject.org/mailman/listinfo/389-users -- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
