[Freeipa-users] slapi_ldap_bind - Error: could not send startTLS request

Rob Crittenden rcritten at redhat.com
Mon Mar 6 20:11:11 UTC 2017 

lejeczek wrote:
> hi everyone
> I've seemingly finely working domain, I mean it all seem fine to me,
> except for:
> 
> [04/Mar/2017:14:26:47.439218725 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:26:47.441155853 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:31:47.454016982 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:31:47.482477473 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:36:46.458508994 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:36:46.479878884 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:41:47.389700728 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> [04/Mar/2017:14:41:47.394379376 +0000] slapi_ldap_bind - Error: could
> not send startTLS request: error -1 (Can't contact LDAP server) errno
> 107 (Transport endpoint is not connected)
> 
> being logged quite frequently, as you can see. Setup:
> 
> ipa-client-4.4.0-14.el7.centos.4.x86_64
> ipa-client-common-4.4.0-14.el7.centos.4.noarch
> ipa-common-4.4.0-14.el7.centos.4.noarch
> ipa-python-compat-4.4.0-14.el7.centos.4.noarch
> ipa-server-4.4.0-14.el7.centos.4.x86_64
> ipa-server-common-4.4.0-14.el7.centos.4.noarch
> ipa-server-dns-4.4.0-14.el7.centos.4.noarch
> 
> Replication, users, logins, all seem normal. But above bothers me as I
> am afraid it may one day turn out critical and brake stuff down.
> This is on the first server that initiated the domain, long time ago.
> There is a second server which logs the same, but only a few entries
> then goes quiet.
> Third server's error log is completely free from this error.
> 
> Would appreciate all help.

The CA replication agreements are handled by ipa-csreplica-manage. You
may have leftover agreements from previous installs there.

rob

More information about the Freeipa-users mailing list