I have a 389ds v1.3.4 server as deployed by CentOS7 configured with SSL/TLS to require client certificates.
Attempts to connect to this server using "openssl s_client" fail, and the failure is triggered by the 389ds server side as follows:
4 4 0.0079 (0.0009) S>CV3.3(2) Alert
level fatal
value bad_certificate
4 0.0080 (0.0000) S>C TCP FIN
Unfortunately the error log on the 389ds server is dead silent on this issue, and without a sensible error message it is making debugging this very difficult.
What mechanism must I use to enable any kind of logging inside 389ds that will indicate why a particular SSL/TLS connection is being rejected?
Regards,
Graham
—
--
389 users mailing list
389-users@%(host_name)s
http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
No comments:
Post a Comment