[6.836] eDirectory TLS not working

Hi,
I just looked at the eDirctory in 6.836. It seems that TLS is not working.

My Netware Server tells me:

New TLS connection 0x44e0a620 from ASG7Beta:56568, monitor = 0xa2b, index =

 10                                                                             

Monitor 0xa2b initiating TLS handshake on connection 0x44e0a620                 

DoTLSHandshake on connection 0x44e0a620                                         

TLS accept failure 5 on connection 0x44e0a620, setting err = -5875. Error stack:

                                                                                

TLS handshake failed on connection 0x44e0a620, err = -5875                      

11:26:43                                                                        

Server closing connection 0x44e0a620, socket error = -5875                      

Connection 0x44e0a620 closed

I am just wondering how TLS can work without having the Public
key of my Netware Server? On my other Linux Machines (Fedora)
I had to import the key to get TLS running...

cu SveN

Parents

0 Timo Steinbach over 18 years ago

There is another thread where a similar problem was discussed. I guess you already tried all options, because you participated in that thread, too.

link

Also I found an article which might help to solve the problem.

link

For testing I use a Novell Netware 6.5 system and an eDirectory Based on Sles9. Both work fine with SSL enabled on ASG v7 beta. So it's an configuration issue, I think.

If the articles I posted will not solve the problem, please activate debug logging for Astaro User authentication daemon and post the corresponding part from the logfile /var/log/aua.log.

How to activate debuging:
Login to console and execute `killall -SIGUSR2 aua.bin`.

Note: SSO does not work for LINUX! based eDirectory, at the moment.

best regards
Timo Steinbach
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 SveN_01 over 18 years ago in reply to Timo Steinbach

Hello Timo,
Sorry... but I forgott to tell you: This error occours if I do the following:
-Users
-Groups
-New Group
-Backend Membership
-eDirectory
-Limit to backend group(s) membership
-Click on the Folder Icon
--> Message "Unable to connect to eDirctory LDAP service. Is eDirectoy correctly configured"
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 SveN_01 over 18 years ago in reply to Timo Steinbach

Hello Timo,
Sorry... but I forgott to tell you: This error occours if I do the following:
-Users
-Groups
-New Group
-Backend Membership
-eDirectory
-Limit to backend group(s) membership
-Click on the Folder Icon
--> Message "Unable to connect to eDirctory LDAP service. Is eDirectoy correctly configured"
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 Timo Steinbach over 18 years ago in reply to SveN_01

OK, I see. Maybe related in SSL version or something like that. It's reproduceable. Give me some time to investigate in this ...

regards
Timo
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel