Hello,
Have now got to the point where it says "Select a certificate to authenticate"
yet the drop down box is empty.
If I check the NSS database it looks okay ?
D:\Scratch\firefox_add-certs\bin>certutil.exe -d "c:\Documents and
Settings\pmdaws\.389-console" -L
Certificate Nickname Trust Attributes
SSL,S/MIME,JAR/XPI
LAB CA Certificate CT,,
Phil Daws p,p,p
Seems as though the console is not picking them up :(
Thanks, Phil
----- On 15 Dec, 2015, at 20:35, Noriko Hosoi nhosoi(a)redhat.com wrote:
On 12/15/2015 11:40 AM, Phil Daws wrote:
> Hello,
>
> Unfortunately I do not have a console under Fedora/RHEL.
>
> I can log into the Administration console fine, but when I click on Server
> Group, and then double click on the Directory Server it prompts me for the
> Distinguished name and password. The status is showing as:
>
> Server status: Stopped
> Port: 636
>
> The ports are listening fine:
>
> Active Internet connections (only servers)
> Proto Recv-Q Send-Q Local Address Foreign Address State
> PID/Program name
> tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
> 301/sshd
> tcp 0 0 0.0.0.0:9830 0.0.0.0:* LISTEN
> 1261/httpd
> tcp6 0 0 :::22 :::* LISTEN
> 301/sshd
> tcp6 0 0 :::636 :::* LISTEN
> 1196/ns-slapd
> tcp6 0 0 :::389 :::* LISTEN
> 1196/ns-slapd
>
> So am guessing it's probably due to when I enabled "Secure Connection"
in the
> console :(
>
> Any thoughts please ?
Not sure yet, but did you have a chance to see this section?
http://www.port389.org/docs/389ds/howto/howto-ssl.html#admin-server-tlsss...
>
> Thanks, Phil
>
>
>
> ----- On 15 Dec, 2015, at 19:01, Noriko Hosoi nhosoi(a)redhat.com wrote:
>
>> On 12/15/2015 09:51 AM, Phil Daws wrote:
>>> Hello,
>>>
>>> I have 389 up and running in my lab, with encryption enabled, but when I
connect
>>> too the Administration panel and double click on the Directory Server it
just
>>> hangs. The CA certificate has been imported using:
>>>
>>> d:\Scratch\firefox_add-certs\bin>certutil -A -d "C:\Documents and
>>> Settings\phild\.389-console" -n "CA Certificate" -t CT,, -i
>>> d:\Downloads\CA-chain.pem -a
>>>
>>> Am I missing something obvious please ?
>>>
>>> Thanks, Phil
>>>
>>> --
>>> 389 users mailing list
>>> 389-users@%(host_name)s
>>>
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
>> Administration URL starts with https?
>>
>> If you use Console on Fedora/RHEL, you have no problem?
>>
>> Thanks.
>> --
>> 389 users mailing list
>> 389-users@%(host_name)s
>>
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
> --
> 389 users mailing list
> 389-users@%(host_name)s
>
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
--
389 users mailing list
389-users@%(host_name)s
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org