Re: Problem with GnuTLS/openssl

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problem with GnuTLS/openssl

From:	Simon Josefsson
Subject:	Re: Problem with GnuTLS/openssl
Date:	Tue, 21 Aug 2012 12:19:26 +0200
User-agent:	Gnus/5.130006 (Ma Gnus v0.6) Emacs/23.3 (gnu/linux)

Ognen Duzlevski <address@hidden> writes:

> Hello,
>
> I have a Debian 6.0.5 server running OpenLDAP which appears to be linked
> against GnuTLS. I have generated a self-signed certificate using certtool
> and have successfully used it to authenticate Debian client machines
> against the OpenLDAP ldaps:// server in question.
>
> However, when I try to do the same on a CentOS 6 client, I am unable to do
> so.
>
> On the CentOS client, if I try to run ldapsearch against the server, I get
> the following:
>
> ldap_start_tls: Can't contact LDAP server (-1)
>         additional info: TLS error -8101:Certificate type not approved for
> application.

Maybe you need to answer one of these with 'y' when you generate the
cert:

Is this also a TLS web server certificate? (y/N): 
Will the certificate be used for signing (required for TLS)? (y/N): 
Will the certificate be used for encryption (not required for TLS)? (y/N): 

/Simon

[Prev in Thread]

Current Thread

[Next in Thread]

Problem with GnuTLS/openssl, Ognen Duzlevski, 2012/08/21
- Re: Problem with GnuTLS/openssl, Nikos Mavrogiannopoulos, 2012/08/21
  - Re: Problem with GnuTLS/openssl, Ognen Duzlevski, 2012/08/21
    - Re: Problem with GnuTLS/openssl, Nikos Mavrogiannopoulos, 2012/08/22
- Re: Problem with GnuTLS/openssl, Simon Josefsson <=

Prev by Date: Re: Problem with GnuTLS/openssl
Next by Date: Re: Problem with GnuTLS/openssl
Previous by thread: Re: Problem with GnuTLS/openssl
Next by thread: certtool never asks for CA-password when signing certificates
Index(es):
- Date
- Thread