### Starting ldap parts

groupadd -g 10000 ldap

useradd -u 10000 -g 10000 -d /home/ldap ldap

yum install 389-admin

yum install 389-adminutil 389-adminutil-devel \

389-ds-base 389-ds-base-devel 389-ds-base-libs


### Take defaults



chkconfig --levels 2345 dirsrv on

chkconfig --levels 2345 dirsrv-admin on

chkconfig --levels 2345 httpd on



cd /etc/dirsrv/slapd-ldap

certutil -N -d .

certutil -L -d .


At some point, the CA Builtin tokens are all gone.


-          Chris

From: 389-users-bounces@lists.fedoraproject.org [mailto:389-users-bounces@lists.fedoraproject.org] On Behalf Of Gerhardus Geldenhuis
Sent: Wednesday, October 19, 2011 8:49 AM
To: General discussion list for the 389 Directory server project.
Subject: Re: [389-users] SSL Question


Hi Chris,

Not seen that before could you detail the steps you have taken thus far to get to the point you at now.



2011/10/19 Chris Cawley <cawley@wrlc.org>

Hello –


We are in the process of setting up SSL on 389 ds; however,

it appears that the CA cert db is empty.  The builtin tokens

are not even loaded.  Any ideas why?


-          Thanks



Chris Cawley

System Administrator

Washington Research Library Consortium





389 users mailing list


Gerhardus Geldenhuis