Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page 6.0.1 LDAP Replica

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 09-24-2009, 07:08 PM
Special Member
  
Posts: 122
Default 6.0.1 LDAP Replica
Hi all,

I followed the instructions in the Multi-Server Installation Doc for installing an LDAP replica. I cannot get this thing working. Slapd is running, but an ldapsearch returns 0 entries. Here are some errors I've been getting:

Code:
[zimbra@replica root]$ zmupdateauthkeys
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.net.ssl.SSLHandshakeException sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)
Updating /opt/zimbra/.ssh/authorized_keys
Code:
[zimbra@replica root]$ zmldappasswd mysecret
Updating local config and directory
TLS: SSL connect attempt failed with unknown errorerror:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Code:
[zimbra@replica root]$ zmsshkeygen
Generating public/private dsa key pair.
Your identification has been saved in /opt/zimbra/.ssh/zimbra_identity.
Your public key has been saved in /opt/zimbra/.ssh/zimbra_identity.pub.
The key fingerprint is:
d5:17:25:7c:f5:0f:ec:a3:43:84:b2:11:17:9f:ce:7f replica.spacecomputer.com
ERROR: service.FAILURE (system failure: ZimbraLdapContext) (cause: javax.net.ssl.SSLHandshakeException sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target)
Any ideas?
Reply With Quote
  #2 (permalink)  
Old 09-25-2009, 07:41 AM
Special Member
  
Posts: 122
Default
bump
Reply With Quote
  #3 (permalink)  
Old 09-25-2009, 02:15 PM
Special Member
  
Posts: 122
Default
I was able to fix those errors by copying the commercial cert from the main server to this server and running the following:
Code:
/opt/zimbra/java/bin/keytool -import -alias new -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit -file /tmp/commercial.crt
However, the replica server still doesn't seem to be working properly. The logs appear to be showing that ldap data is replicated, but when I run ldapsearch, I get nothing:
Code:
[root@replica /]# ldapsearch -h replica -x
# extended LDIF
#
# LDAPv3
# base <> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# search result
search: 2
result: 0 Success

# numResponses: 1
Please help!
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.