[Pki-users] dogtag can't establish SSL connection to LDAP server

Jerome Fenal jfenal at redhat.com
Mon Apr 6 16:49:53 UTC 2009


Le lundi 06 avril 2009 à 18:20 +0200, Simon Vallet a écrit :
> Hi,
> 
> I'm currently trying to integrate dogtag into our environment :
> building did go fine, but somehow it doesn't want to securely connect
> to our OpenLDAP server -- that's what I get in the logs at startup :
> 
> CMS Warning: 
> FAILURE: Cannot build CA chain. Error java.security.cert.CertificateException: Certificate is not a PKCS #11 certificate
> FAILURE: In Ldap (bound) connection pool to host ldap.genoscope.cns.fr port 636, Cannot connect to LDAP server. Error: netscape.ldap.LDAPException: IO Error creating JSS SSL Socket (-1)
> FAILURE: In Ldap (bound) connection pool to host ldap.genoscope.cns.fr port 636, Cannot connect to LDAP server. Error: netscape.ldap.LDAPException: IO Error creating JSS SSL Socket (-1)
> FAILURE: In Ldap (bound) connection pool to host ldap.genoscope.cns.fr port 636, Cannot connect to LDAP server. Error: netscape.ldap.LDAPException: IO Error creating JSS SSL Socket (-1)
> FAILURE: authz instance DirAclAuthz initialization failed and skipped, error=Could not connect to LDAP server host ldap.genoscope.cns.fr port 636 Error netscape.ldap.LDAPException: IO Error creating JSS SSL Socket (-1)
> 
> Google is quite unhelpful on this one, so any hint would be greatly
> appreciated.

Hi Simon,

what are you trying to achieve ?

What are you using OpenLDAP for ? Publishing certs, or config LDAP
server ?

Regards,

J.
-- 
Jérôme Fenal, RHCE                                       Tel.: +33 1 41 91 23 37
Solution Architect                                       Mob.: +33 6 88 06 51 15
Consultant Avant-ventes                                  Fax.: +33 1 41 91 23 32
http://www.redhat.fr/                                          jfenal at redhat.com
Red Hat France SARL                                   Siret n° 421 199 464 00064
Le Linea, 1 rue du Général Leclerc                  92047 Paris La Défense Cédex
Taillez dans vos coûts avec Red Hat !   http://www.redhat.fr/promo/carveoutcosts




More information about the Pki-users mailing list