[Pkg-openldap-devel] Bug#451536: upgrade fails if using private SSL cert and pem
Jamin W. Collins
jcollins at asgardsrealm.net
Fri Nov 16 18:04:56 UTC 2007
Package: slapd
Version: 2.3.30-5
Severity: normal
Upgraded my OpenLDAP server this morning and slapd failed to start. The
initial failure was in the middle of a general dist-upgrade from sarge
to etch. As such the notices about the failure scrolled off the screen.
So, to find the reason for the failure I ran "apt-get -f install". This
of course failed due to the backup already existing, as others have
noted. Moving the latest backup out of the way allowed the previous
upgrade failure message and notes to be displayed.
Running "slapd -u openldap -g openldap -d 16383" revealed the cause of
the failure.
While the database ownership had been updated to the new user:group, the
configuration files (/etc/ldap) had not. Specifically, the SSL
certificate and key used for SSL connections could not be read.
Changing the ownership on the key and certificate to openldap:openldap
and once again moving the backup out of the way corrected the problem.
--- System information. ---
Architecture: i386
Kernel: Linux 2.6.18-5-k7
Debian Release: 4.0
More information about the Pkg-openldap-devel
mailing list