yes of course, I even restarted the machine.
Finally it works and without encryption, but this makes me fool because I have spent some days and without success.
The same actions I have tried on SLES 11 (with virtualbox) and it works without any problem but not on openSUSE…
On Sat, 19 Mar 2011 17:06:02 +0000, isemionov wrote:
> yes of course, I even restarted the machine.
I thought you probably had, but having done online support for many
years, I’ve found that often it’s the case that it’s something simple
that’s been missed. I’m glad that isn’t the case here.
> Finally it works and
> without encryption, but this makes me fool because I have spent some
> days and without success. The same actions I have tried on SLES 11
> (with virtualbox) and it works without any problem but not on
> openSUSE…
Anything recorded in any of the relevant log files related to the failure?
Another thought - did you import the certificate’s info into the
certificate store? (I actually ran into this recently configuring a
service to use LDAP on OES2, and I got a very similar error message to
what you’re getting, and the only way was to import the self-signed
certificate into the certificate store used by the Java instance I was
working with).
Anything recorded in any of the relevant log files related to the failure?
there is nothing related in /var/log/messages
Another thought - did you import the certificate’s info into the
certificate store? (I actually ran into this recently configuring a
service to use LDAP on OES2, and I got a very similar error message to
what you’re getting, and the only way was to import the self-signed
certificate into the certificate store used by the Java instance I was
working with).
I was thinking about something like this but I have no idea how it can be done for Yast modules that are not java applications.
On Sat, 19 Mar 2011 18:36:01 +0000, isemionov wrote:
>> Anything recorded in any of the relevant log files related to the
>> failure?
> there is nothing related in /var/log/messages
>
>
>> Another thought - did you import the certificate’s info into the
>> certificate store? (I actually ran into this recently configuring a
>> service to use LDAP on OES2, and I got a very similar error message to
>> what you’re getting, and the only way was to import the self-signed
>> certificate into the certificate store used by the Java instance I was
>> working with).
> I was thinking about something like this but I have no idea how it can
> be done for Yast modules that are not java applications.
I’m thinking that there’s got to be a certificate store that the mail
server is using - that would be where it would need to be added.
Actually the problem is the connection of standard yast mail administration module using tls.
If i’m setting ldap client to not use tls then the connections is ok.
And mail server (standard YaST+postfix+Cyrus+LDAP) works OK and can be accessed with TLS also.
The same for ldap browser, it tries to connect using tls, fails and asks if I want to try without tls and if I answer yes then the connection is OK.
The same behavior for user and groups administration module
i.e. the problem is only in yast modules making ldap connection using tls - they can not accept self generated certificates.
But this is very strange for me as far in SLES 11 it works and there the same idea is used.
I do not understand.