Bug 175051
Summary: | ns-slapd: Fails to start, seems to be unable to find key3.db and cert3.db files | ||||||
---|---|---|---|---|---|---|---|
Product: | [Retired] 389 | Reporter: | Bob Kong <rkong> | ||||
Component: | Security - SSL | Assignee: | Rich Megginson <rmeggins> | ||||
Status: | CLOSED WORKSFORME | QA Contact: | Orla Hegarty <ohegarty> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 1.0 | CC: | ohegarty | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | i686 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2006-03-13 21:31:08 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Bob Kong
2005-12-06 00:43:32 UTC
What are the contents of your /opt/fedora-ds/alias directory? e.g. do an ls -l /opt/fedora-ds/alias and attach the output to this bug. Created attachment 121883 [details]
ls directory listing of /opt/fedora-ds/alias
I've attempted to change the permissions on the all the files so that they were
readable, thinking that it may have been a permssision problem.
Some additional information:
This system is running FC3 completely update-to-date with the latest updates
via 'yum'
Is your directory server running as uid ldap? If so, try changing all of your files to be owned by ldap e.g. chown ldap:ldap *.db That corrected the problem. So FDS 1.0 now checks for file ownership and not whether the file is readable? Thanks again No, it has to open the key/cert db in read-write mode. However, it's safer to change the owner rather than leave the files with wide open read-write permissions. Was this a fresh FDS 1.0 installation? The server is supposed to chmod/chown those files appropriately, so this step should have been unnecessary. Did you change the server uid after running setup? No further response from customer. Appears to have be a configuration problem Closing bug Bug already CLOSED. setting screened+ flag |