<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <style type="text/css" style="display:none;"></style> </head> <body dir="ltr"> <div id="divtagdefaultwrapper" style="font-size:12pt;color:#000000;font-family:Calibri,Arial,Helvetica,sans-serif;"> Hi All, I wanted to enable secure LDAP connection on freeIPA but alas after changing cn=config nsslapd-minssf from 0 to 128 i am getting below error: ipactl restart Failed to read data from Directory Service: Unknown error when retrieving list of services from LDAP: Server is unwilling to perform: Minimum SSF not met. Shutting down When trying to put back the original nsslapd-minssf to "0" i am getting below error: modifying entry "cn=config" ldap_modify: Server is unwilling to perform (53) additional info: Minimum SSF not met. I tried below configuration but still getting unwilling to perform (53) Minimum SSF not met Error. dn: cn=config changetype: modify replace: nsslapd-minssf nsslapd-minssf: 10 - replace: nsslapd-allow-anonymous-access nsslapd-allow-anonymous-access: on - replace: nsslapd-minssf-exclude-rootdse nsslapd-minssf-exclude-rootdse: off I am following the steps mentioned here: <a href="https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/SecureConnections.html" class="OWAAutoLink" id="LPlnk712058" previewremoved="true">https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/SecureConnections.html</a> <div id="LPBorder_GT_14769649249620.3256429045702476" style="margin-bottom: 20px; overflow: auto; width: 100%; text-indent: 0px;"> <table id="LPContainer_14769649249590.5317645170006295" cellspacing="0" style="width: 90%; background-color: rgb(255, 255, 255); position: relative; overflow: auto; padding-top: 20px; padding-bottom: 20px; margin-top: 20px; border-top: 1px dotted rgb(200, 200, 200); border-bottom: 1px dotted rgb(200, 200, 200);"> <tbody> <tr valign="top" style="border-spacing: 0px;"> <td id="TextCell_14769649249600.2466192940251246" colspan="2" style="vertical-align: top; position: relative; padding: 0px; display: table-cell;"> <div id="LPRemovePreviewContainer_14769649249600.13641114276589916"></div> <div id="LPTitle_14769649249600.27390544252265614" style="top: 0px; color: rgb(0, 120, 215); font-weight: normal; font-size: 21px; font-family: wf_segoe-ui_light, "Segoe UI Light", "Segoe WP Light", "Segoe UI", "Segoe WP", Tahoma, Arial, sans-serif; line-height: 21px;"> <a id="LPUrlAnchor_14769649249610.5893093989684759" href="https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/SecureConnections.html" target="_blank" style="text-decoration: none;">Chapter 14. Configuring Secure Connections - Red Hat Support</a></div> <div id="LPMetadata_14769649249610.02243114385193401" style="margin: 10px 0px 16px; color: rgb(102, 102, 102); font-weight: normal; font-family: wf_segoe-ui_normal, "Segoe UI", "Segoe WP", Tahoma, Arial, sans-serif; font-size: 14px; line-height: 14px;"> access.redhat.com</div> <div id="LPDescription_14769649249620.007572451916774581" style="display: block; color: rgb(102, 102, 102); font-weight: normal; font-family: wf_segoe-ui_normal, "Segoe UI", "Segoe WP", Tahoma, Arial, sans-serif; font-size: 14px; line-height: 20px; max-height: 100px; overflow: hidden;"> By default, clients and users connect to the Red Hat Directory Server over a standard connection. Standard connections do not use any encryption, so information is ...</div> </td> </tr> </tbody> </table> </div> How can i get LDAPS working on my FreeIPA? Many Thanks, Deepak </div> </body> </html>