Project

General

Profile

Tâche #23389

Scénario #23694: EOLE 2.7.0 et certificats SSL : faire fonctionner les services qui ne démarrent plus suite à la génération par openssl des clés privées

slapd ne démarre pas à cause des certificats

Added by Joël Cuissinat about 3 years ago. Updated almost 3 years ago.

Status:
Fermé
Priority:
Normal
Start date:
03/21/2018
Due date:
% Done:

100%

Estimated time:
4.00 h
Spent time:
Remaining (hours):
0.0

Description

Contournement de fortune :

root@ubuntu:~# chmod +r /etc/ssl/certs/eole.key

Associated revisions

Revision 37f414a5 (diff)
Added by Fabrice Barconnière almost 3 years ago

Use specific directory for certificate and private

ref #23389

Revision 0b1d6888 (diff)
Added by Joël Cuissinat almost 3 years ago

  • posttemplate/00-annuaire : update for container support

Ref: #23798
Ref: #23694

History

#1 Updated by Joël Cuissinat about 3 years ago

Même pb pour ead-server :

  File "/usr/share/ead2/backend/eadserver.tac", line 42, in <module>
    context = ServerContextFactory()
  File "/usr/share/ead2/lib/libsecure.py", line 40, in __init__
    self.key = crypto.load_privatekey(crypto.FILETYPE_PEM, open(key_file).read())
exceptions.IOError: [Errno 13] Permission non accordée: '/etc/ssl/certs/eole.key'

#2 Updated by Fabrice Barconnière almost 3 years ago

  • Parent task changed from #23280 to #23694

#3 Updated by Fabrice Barconnière almost 3 years ago

  • Status changed from Nouveau to En cours

#4 Updated by Fabrice Barconnière almost 3 years ago

  • Description updated (diff)
  • Assigned To set to Fabrice Barconnière

#5 Updated by Fabrice Barconnière almost 3 years ago

  • Remaining (hours) changed from 4.0 to 0.5

#6 Updated by Fabrice Barconnière almost 3 years ago

  • Status changed from En cours to Résolu
  • % Done changed from 0 to 100

#7 Updated by Joël Cuissinat almost 3 years ago

  • Status changed from Résolu to Fermé
  • Remaining (hours) changed from 0.5 to 0.0
root@scribe:~# ll /etc/ldap/ssl/private/openldap.key /etc/ldap/ssl/certs/openldap.crt 
-rw-r--r-- 1 openldap openldap 1464 avril 30 15:30 /etc/ldap/ssl/certs/openldap.crt
-rw------- 1 openldap openldap 1679 avril 30 15:30 /etc/ldap/ssl/private/openldap.key

Also available in: Atom PDF