Ubuntu
ubuntu-docs package

in server guide 10.04 on OpenLDAP there are 2 error in statement 7 concerning TSL and SSL

Bug #612119 reported by Thomas Boose
14
This bug affects 2 people
Affects Status Importance Assigned to Milestone
ubuntu-docs (Ubuntu)
Fix Released
Undecided
Adam Sommer

Bug Description

Binary package hint: ubuntu-docs

on page https://help.ubuntu.com/10.04/serverguide/C/openldap-server.html

Concerning TLS % SSL it says:

Create the server's certificate:

sudo certtool --generate-certificate --load-privkey /etc/ssl/private/x01-test_slapd_key.pem \
 --load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey /etc/ssl/private/cakey.pem \
 --template /etc/ssl/x01-test.info --outfile /etc/ssl/certs/x01-test_slapd_cert.pem

When entered certtool complains about 2 missing files maybe the command should be?

sudo certtool --generate-certificate --load-privkey /etc/ssl/private/ldap01_slapd_key.pem \
 --load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey /etc/ssl/private/cakey.pem \
 --template /etc/ssl/etc/ssl/ldap01.info --outfile /etc/ssl/certs/x01-test_slapd_cert.pem

Tags: serverguide
Matthew East (mdke)
tags: added: serverguide
Revision history for this message
Luke Morton (luke-morton) wrote :

I believe the correct command is:

sudo certtool --generate-certificate --load-privkey /etc/ssl/private/ldap01_slapd_key.pem \
 --load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey /etc/ssl/private/cakey.pem \
 --template /etc/ssl/ldap01.info --outfile /etc/ssl/certs/ldap01_slapd_cert.pem

Note: you need to replace "ldap01" with whatever you used for the host name in step 5.

Adam Sommer (asommer)
Changed in ubuntu-docs (Ubuntu):
assignee: nobody → Adam Sommer (asommer)
Revision history for this message
Adam Sommer (asommer) wrote :

Thanks for reporting this bug, and helping make Ubuntu better. I forgot to replace the name of my test machine when writing the example :-). I've committed a fix to revision 551.

Thanks again all for your feedback.

Changed in ubuntu-docs (Ubuntu):
status: New → Fix Committed
Revision history for this message
Thomas Boose (thomas-boose) wrote : Re: [Bug 612119] Re: in server guide 10.04 on OpenLDAP there are 2 error in statement 7 concerning TSL and SSL

Hi Adam,

Your Welcome. Thank you for the good work you do.
Greetings from Holland.

Sincerely Thomas Boose

2010/8/17 Adam Sommer <email address hidden>

> Thanks for reporting this bug, and helping make Ubuntu better. I forgot
> to replace the name of my test machine when writing the example :-).
> I've committed a fix to revision 551.
>
> Thanks again all for your feedback.
>
> ** Changed in: ubuntu-docs (Ubuntu)
> Status: New => Fix Committed
>
> --
> in server guide 10.04 on OpenLDAP there are 2 error in statement 7
> concerning TSL and SSL
> https://bugs.launchpad.net/bugs/612119
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in “ubuntu-docs” package in Ubuntu: Fix Committed
>
> Bug description:
> Binary package hint: ubuntu-docs
>
> on page https://help.ubuntu.com/10.04/serverguide/C/openldap-server.html
>
> Concerning TLS % SSL it says:
>
> Create the server's certificate:
>
> sudo certtool --generate-certificate --load-privkey
> /etc/ssl/private/x01-test_slapd_key.pem \
> --load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey
> /etc/ssl/private/cakey.pem \
> --template /etc/ssl/x01-test.info --outfile
> /etc/ssl/certs/x01-test_slapd_cert.pem
>
> When entered certtool complains about 2 missing files maybe the command
> should be?
>
> sudo certtool --generate-certificate --load-privkey
> /etc/ssl/private/ldap01_slapd_key.pem \
> --load-ca-certificate /etc/ssl/certs/cacert.pem --load-ca-privkey
> /etc/ssl/private/cakey.pem \
> --template /etc/ssl/etc/ssl/ldap01.info --outfile
> /etc/ssl/certs/x01-test_slapd_cert.pem
>
> To unsubscribe from this bug, go to:
>
> https://bugs.launchpad.net/ubuntu/+source/ubuntu-docs/+bug/612119/+subscribe
>

Connor Imes (ckimes)
Changed in ubuntu-docs (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.