Results 1 to 5 of 5

Thread: [SOLVED] 5.0.6 FOSS Instaling new Self Signed Cert Error

  1. #1
    r8escjohn's Avatar
    r8escjohn is offline Senior Member
    Join Date
    Jan 2008
    Location
    Columbia City IN
    Posts
    68
    Rep Power
    7

    Unhappy [SOLVED] 5.0.6 FOSS Instaling new Self Signed Cert Error

    On our Zimbra FOSS 5.0.6 install our self signed cert expired yesterday and trying to create a new self signed cert.
    When I attempt to create a new self signed cert I get 'Your certificate was not installed due to the error : system failure: XXXXX ERROR: failed to create jetty.pcks12'. Good news is that so far this issue does not seem to be affecting mail flow...:->
    Found following thread:
    [SOLVED] Expired Cert in 5.0GA can cause mail Delivery failure
    but is seems to deal with 5.0GA and 5.0.1. Do I do the same steps in 5.0.6 or are they different now to address this error? I may have caused initial issue as I added my Country, City and State info into the certificate CSR fields as they were blank. My bad.....I am thinking that I just need to remove the old cert info as in that thread above but wanted to make sure that in the version I have the process is the same or similar before I toast my live box.
    Thanks for any assistance you can provid!

  2. #2
    r8escjohn's Avatar
    r8escjohn is offline Senior Member
    Join Date
    Jan 2008
    Location
    Columbia City IN
    Posts
    68
    Rep Power
    7

    Default

    Ok, now after a server restart after a full back my Zimbra Server is now dead....
    Stuck at step:
    (b2) ldapmodify -x -h fqdn.server.tld -D "uid=zimbra,cn=admins,cn=zimbra" -W
    I continually get
    ldap_bind: Can't contact LDAP server (-1)
    Syntax of what I am typing:
    zimbra@zimbra:~> ldapmodify -x -h zimbra.r8esc.k12.in.us -D "uid=zimbra,cn=admins,cn=zimbra" -W Enter LDAP Password:
    ldap_bind: Can't contact LDAP server (-1)
    zimbra@zimbra:~>
    I have tried many times putting the password in so I am sure I am putting correct password.
    What am I missing in that command??????

  3. #3
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

  4. #4
    r8escjohn's Avatar
    r8escjohn is offline Senior Member
    Join Date
    Jan 2008
    Location
    Columbia City IN
    Posts
    68
    Rep Power
    7

    Default

    uxbod,
    Ok....That is where I am at now and get this
    zimbra@zimbra:/root> keytool -delete -alias my_ca -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
    keytool error: java.io.FileNotFoundException: /opt/zimbra/java/jre/lib/security/cacerts (Permission denied)
    Thanks!

  5. #5
    r8escjohn's Avatar
    r8escjohn is offline Senior Member
    Join Date
    Jan 2008
    Location
    Columbia City IN
    Posts
    68
    Rep Power
    7

    Default

    Ok, I am a compleate idoit...:->
    Thick skull syndorome (TSS) strikes again...
    Go here and follow :
    Problem with Certificate can cause MTA Failure - Zimbra :: Wiki
    AND READ THE LINE:
    Note, for zcs version 5.0.6 (c) should be Run as root: /opt/zimbra/bin/zmcertmgr deploycrt self
    Issue resolved...

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [SOLVED] Zimbra logwatch.
    By nishith in forum Administrators
    Replies: 5
    Last Post: 06-10-2009, 04:42 PM
  2. Zimbra fails after working for 2 weeks
    By Linsys in forum Administrators
    Replies: 10
    Last Post: 10-07-2008, 12:42 AM
  3. [SOLVED] Debian Etch 32 / 64: MTA not working
    By xflip in forum Installation
    Replies: 2
    Last Post: 01-18-2008, 04:58 AM
  4. 3.0 to 4.5.3 Upgrade failed (mysql error)
    By dealt in forum Installation
    Replies: 35
    Last Post: 03-19-2007, 10:30 PM
  5. M3 problem with shares
    By titangears in forum Users
    Replies: 4
    Last Post: 01-12-2006, 01:01 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •