Code: Select all
[root@server1 openldap]# cat changes2.ldif
dn: cn=config
changetype: modify
replace: olcTLSCertificateFile
olcTLSCertificateFile: /etc/openldap/certs/cert.pem
dn: cn=config
changetype: modify
replace: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/openldap/certs/priv.pem
[root@server1 openldap]#
#####################################################################################
[root@server1 openldap]# ldapmodify -vv -Y EXTERNAL -H ldapi:/// -f changes2.ldif
ldap_initialize( ldapi:///??base )
SASL/EXTERNAL authentication started
SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth
SASL SSF: 0
replace olcTLSCertificateFile:
/etc/openldap/certs/cert.pem
modifying entry "cn=config"
ldap_modify: Other (e.g., implementation specific) error (80)
#####################################################################################
Code: Select all
[root@server1 openldap]# ls -lrt /etc/openldap/certs/*.pem
-rw-r--r--. 1 ldap ldap 1704 Jun 17 09:08 /etc/openldap/certs/priv.pem
-rw-r--r--. 1 ldap ldap 1302 Jun 17 09:08 /etc/openldap/certs/cert.pem
#####################################################################################
[root@server1 openldap]# sudo ldapsearch -H ldapi:// -Y EXTERNAL -b "cn=config" -LLL -Q -s base
dn: cn=config
objectClass: olcGlobal
cn: config
olcArgsFile: /var/run/openldap/slapd.args
olcLogLevel: -1
olcPidFile: /var/run/openldap/slapd.pid
olcTLSCACertificatePath: /etc/openldap/certs
olcTLSCertificateFile: "OpenLDAP Server"
olcTLSCertificateKeyFile: /etc/openldap/certs/password
[root@server1 openldap]#