-
Ldap will not start
My server is standalone, no firewall
After a update on the 14th, slapd will not start
TLSMC: MozNSS compatibility interception begins.
tlsmc_intercept_initialization: INFO: entry options follow:
tlsmc_intercept_initialization: INFO: cacertdir = `(null)'
tlsmc_intercept_initialization: INFO: certfile = `/etc/openldap/certs/clearos-cert.pem'
tlsmc_intercept_initialization: INFO: keyfile = `/etc/openldap/certs/clearos-key.pem'
tlsmc_convert: INFO: trying to open NSS DB with CACertDir = `(null)'.
tlsmc_convert: INFO: cannot open the NSS DB, expecting PEM configuration is present.
tlsmc_intercept_initialization: INFO: altered options follow:
tlsmc_intercept_initialization: INFO: cacertdir = `(null)'
tlsmc_intercept_initialization: INFO: certfile = `/etc/openldap/certs/clearos-cert.pem'
tlsmc_intercept_initialization: INFO: keyfile = `/etc/openldap/certs/clearos-key.pem'
tlsmc_intercept_initialization: INFO: successfully intercepted TLS initialization. Continuing with OpenSSL only.
TLSMC: MozNSS compatibility interception ends.
TLS: could not use key file `/etc/openldap/certs/clearos-key.pem'.
TLS: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch x509_cmp.c:341
5b4d47f4 main: TLS init def ctx failed: -1
5b4d47f4 slapd destroy: freeing system resources.
5b4d47f4 slapd stopped.
5b4d47f4 connections_destroy: nothing to destroy.
when i run
/usr/sbin/slapd -h 'ldap://127.0.0.1/ ldaps://127.0.0.1/' -u ldap -d -1
Looks like wrong certs after update. -