[Fedora-directory-users] ldap and certificate
Greg Copeland
GCopeland at efjohnson.com
Wed Apr 18 19:02:34 UTC 2007
I'm walking through
http://www.csse.uwa.edu.au/~ashley/fedora-ds/fedora-ds-26072006.html. I
have attempted it several times and each time it fails in the exact same
place. I get "pk12util-bin: PKCS12 decode import bags failed: You are
attempting to import a cert with the same issuer/serial as an existing
cert, but that is not the same cert." It fails for the same reason
every time.
I can get only one of the two certificates imported into each of the two
databases. Each time, I can only import the "DS-Server-Cert". The
other fails as above. I can confirm the DS-Server-Cert has been added
via the GUI interface.
[root at host fedora-ds]# /opt/fedora-ds/shared/bin/pk12util -i
/tmp/ldap/server.p12 -d alias -P admin-serv-host-
Enter Password or Pin for "NSS Certificate DB":
Enter Password or Pin for "NSS Certificate DB":
Enter password for PKCS12 file:
pk12util-bin: PKCS12 IMPORT SUCCESSFUL
[root at host fedora-ds]# /opt/fedora-ds/shared/bin/pk12util -i
/tmp/admingui/server.p12 -d alias -P admin-serv-host-
Enter Password or Pin for "NSS Certificate DB":
Enter password for PKCS12 file:
pk12util-bin: PKCS12 decode import bags failed: You are attempting to
import a cert with the same issuer/serial as an existing cert, but that
is not the same cert.
Cheers,
Greg Copeland
> -----Original Message-----
> From: fedora-directory-users-bounces at redhat.com
[mailto:fedora-directory-
> users-bounces at redhat.com] On Behalf Of ashley
> Sent: Tuesday, April 17, 2007 11:53 PM
> To: General discussion list for the Fedora Directory server project.
> Subject: RE: [Fedora-directory-users] ldap and certificate
>
>
> Sorry our optic fibre link was down. So hence even though our server
was
> up you can't get to it.
>
> Well our link is back up, so it should be there.
>
>
> Cheers then, Ashley
>
> On Tue, 17 Apr 2007, Greg Copeland wrote:
>
> > I get no reply, via ping or browser, from that address.
> >
> >
> > Cheers,
> >
> > Greg Copeland
> >
> >> -----Original Message-----
> >> From: fedora-directory-users-bounces at redhat.com
> > [mailto:fedora-directory-
> >> users-bounces at redhat.com] On Behalf Of ashley
> >> Sent: Monday, April 16, 2007 10:11 PM
> >> To: General discussion list for the Fedora Directory server
project.
> >> Subject: Re: [Fedora-directory-users] ldap and certificate
> >>
> >>
> >> I've written a guide to get the LDAPS working with self signed
> >> certificates which show all the steps involved from certificate
> > creation
> >> to LDAPS from a to z.
> >>
> >> The guide you find is located here
> >>
> >> http://www.csse.uwa.edu.au/~ashley/
> >
> >
> >
> > --
> > Fedora-directory-users mailing list
> > Fedora-directory-users at redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
> >
> >
> > !DSPAM:272,462586ab275702143498666!
> >
>
> --
> Ashley Chew - Systems Administrator
> School of Computer Science and Software Engineering
> University of Western Australia
> Tel: (+61 8) 6488 7082 - Fax: (+61 8) 6488 1089
> Ashley[@]csse.uwa.edu.au - http://www.csse.uwa.edu.au/~ashley
>
> "There is no such thing as Fate, Fate is what you make of it!"
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
More information about the Fedora-directory-users
mailing list