[Fedora-directory-users] Solaris 9 ssl/tls setup. (security library: bad database.)
George Holbert
gholbert at broadcom.com
Tue Dec 20 18:03:29 UTC 2005
>
> Solaris 8 and Solaris 9 look for cert7.db, not cert8.db.
Furthermore,
Some versions of certutil will generate a certificate DB called
cert7.db, but Solaris still won't like it.
I've found that certutil as bundled in the Sun DSRK works well for
generating Solaris client cert DBs:
http://www.sun.com/download/products.xml?id=3f74a0db
NSS 3.3.2 should also work:
http://www.mozilla.org/projects/security/pki/nss/release_notes_332.html
Jamie McKnight wrote:
> On Tue, 2005-12-20 at 11:31 -0600, Michael Montgomery wrote:
>
>> I have successfully gotten solaris 9 (patched with recommended patches)
>> to work without using ssl/tls, but can't seem to get ssl/tls working.
>> I've read the following:
>>
>> http://directory.fedora.redhat.com/wiki/Howto:SolarisClient
>> and this
>> http://forum.sun.com/thread.jspa?threadID=12811&tstart=30
>>
>> And multiple other links to getting this working, but can't seem to get
>> it to initialize the database. Everything in my ldap directory appears
>> to be setup, being that redhat and freebsd with ssl work without issues,
>> and solaris 9 works without tls/ssl, so the issue, I assume, is with the
>> *.db files in /var/ldap.
>>
>> bash-3.00# pwd
>> /var/ldap
>> bash-3.00# ls -l *.db
>> -r--r--r-- 1 root other 65536 Dec 20 11:07 cert8.db
>> -r--r--r-- 1 root other 16384 Dec 20 11:07 key3.db
>> -r--r--r-- 1 root other 32768 Dec 20 10:26 secmod.db
>>
>
> Solaris 8 and Solaris 9 look for cert7.db, not cert8.db.
>
> http://docs.sun.com/app/docs/doc/817-4843/6mkbebdd2?
> a=view#clientsetup-57
>
> Jamie
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
More information about the Fedora-directory-users
mailing list