search for: cacerts

I was not able to find specific help for configuring the crt file for CaCert. I gleaned from examples the following order: server certificate CaCert class 3 certificate Cacert root certificate However, when I try to configure my mail reading for IMAP, Dovecot shows the following error in the log: dovecot: imap-login: Aborted login (no auth attempts): I am assuming, based on searches for this

....4 server on FreeBSD. LBSD2# pkg_info | grep openldap openldap-sasl-client-2.4.23 Open source LDAP client implementation with SASL2 support openldap-sasl-server-2.4.23 Open source LDAP server implementation I put my cert file, key file and CA certfile in a directory called /usr/local/etc/openldap/cacerts Here's how it looks: [root at LBSD2:/usr/local/etc/openldap/cacerts]#ls -l total 48 dr--r----- 2 root ldap 512 Nov 21 17:12 bak -r--r----- 1 root ldap 1960 Nov 21 07:05 bsd2.summitnjhome.com.crt -r--r----- 1 root ldap 4604 Nov 21 17:16 gd_bundle.crt -r--r----- 1 root ldap 4689 No...

...9;s my old blog article on installing Citrix Receiver on OpenSUSE : * https://www.microlinux.fr/citrix-receiver-opensuse-leap-15-0/ The application's certificate store is incomplete, so here's how I resolved the problem under OpenSUSE : # cd /opt/Citrix/ICAClient/keystore/ # rm -rf cacerts/ # ln -s /etc/ssl/certs cacerts Once this is done, Citric Receiver works perfectly under OpenSUSE. Now I tried to do the same thing under CentOS 7. The certificates are stored in a different directory, so here's what I did. # cd /opt/Citrix/ICAClient/keystore/ # rm -rf cacerts/ # ln...

Hola Alfonso, buenos días: Lo he probado pero no me va, eso sí ha cambiado el error, el código utilizado es: library(ROAuth)library(twitteR) download.file(url="http://curl.haxx.se/ca/cacert.pem", destfile="cacert.pem") reqURL <- "https://api.twitter.com/oauth/request_token"accessURL <- "http://api.twitter.com/oauth/access_token"authURL <-

..._timelimit&nbsp;1 nss_initgroups_ignoreusers&nbsp;root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman,nscd,gdm uri&nbsp;ldaps://auth1.xa.xxxx.com:636&nbsp;ldaps://auth2.xa.xxxx.com:636 ssl&nbsp;on tls_checkpeer&nbsp;yes tls_cacertdir&nbsp;/etc/openldap/cacerts tls_cacertfile&nbsp;/etc/openldap/cacerts/cacert.pem pam_password&nbsp;md5 bind_policy&nbsp;soft &nbsp; [root at xxxx&nbsp;~]#&nbsp;cat&nbsp;/etc/openldap/ldap.conf&nbsp; URI&nbsp;ldaps://auth1.xa.xxxx.com:636&nbsp;ldaps://auth2.xa.xxxx.com:636 BASE&nbs...

Thanks for the response. My current chain is as follows: caroot -> child-ca1 -> server cert My cacert.pem file has both the caroot and the child-ca1 certs. I have recompiled libvirt on my machine with some extra debug statements and verified that both the caroot cert and the child-ca1 certs are being loaded. But when I try to connect the caroot and child-ca1 certs only appear under the

Hi, My puppet master can''t bind ( ldap ) with my central server which has CACert assigned certificate. Are there any problem with Puppet with CACert? Or, how can I make that certificate trusted in my Puppet master? Any kind of help or hint appreciated. -- Best, Zico -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post

Hola comunidad, ¿Qué tal? Tengo una duda que creo que es sencilla, pero me veo algo torpe. Estoy tratando de darme de alta para poder acceder, vía R a la api de Twitter, soy un poco novato en esto y por esto lanzo la pregunta. Aunque ya me han ayudado y me han pasado alguno link del pasado, aún no consigo dar con la solución que seguro es algo que se me escapa He usado este código

...SSL mechanism # start_tls mechanism uses the normal LDAP port, LDAPS typically 636 ssl no # OpenLDAP SSL options # Require and verify server certificate (yes/no) #tls_checkpeer yes # CA certificates for server certificate verification tls_cacertfile /etc/openldap/cacerts/cacert.pem tls_cacertdir /etc/openldap/cacerts # Client certificate and key tls_cert /etc/openldap/cacerts/servercert.pem tls_key /etc/openldap/cacerts/serverkey.pem Relevant parts of /etc/pam.d/system-auth: auth required pam_env.so auth sufficient...

Hi all, We are running "dovecot-1.0.7-7.el5" on a CentOS release 5.5 (Final) box. I know, its an old version, but it cames up with the CentOS release (yum). Anyway. Is there a way to import the certificate, which was generated with "mkcert_dovecot.sh", permanently to the outlook 2003 clients? Every time, when our office 2003 clients fetches there emails (POP3s) from our

...dap_send_initial_request ldap_new_connection 1 1 0 ldap_int_open_connection ldap_connect_to_host: TCP ldap.domain.org:6636 ldap_new_socket: 3 ldap_prepare_socket: 3 ldap_connect_to_host: Trying 12.34.56.78:6636 ldap_pvt_connect: fd: 3 tm: -1 async: 0 TLS: certdb config: configDir='/etc/openldap/cacerts' tokenDescription='ldap(0)' certPrefix='' keyPrefix='' flags=readOnly TLS: cannot open certdb '/etc/openldap/cacerts', error -8018:Unknown PKCS #11 error. TLS: error: connect - force handshake failure: errno 0 - moznss error -12226 TLS: can't connect: TLS e...

Not the clearest of error messages. A successful cannot load. May 7 21:05:29 10.10.10.213 dovecot: child 21500 (login) returned error 89 May 7 21:05:29 10.10.10.213 dovecot: child 21501 (login) returned error 89 May 7 21:05:29 10.10.10.213 dovecot: child 21502 (login) returned error 89 May 7 21:05:29 10.10.10.213 dovecot: child 21503 (login) returned error 89 May 7 21:05:29 10.10.10.213

Hi Folks #1 Has ~/.wine/config (http://www.codeweavers.com/support/docs/wine-user/config-file) moved? Under ~/.wine/ I have no "config", but I do have the 3 files: system.reg; user.reg; userdef.reg. Is one of these now the "config" file? And #2 I installed Windows native ole32.dll into ~/.wine/drive_c/windows (as per the ole32.dll accompanying text file - well,

I fetchmail on my CentOS-6.2 from 4 servers. One always gives the warning ----------------------------- [tim at grover cron.d]$ fetchmail -a go.tcd.ie fetchmail: Error exchanging credentials 6 messages for tmurphy at go.tcd.ie. reading message tmurphy at go.tcd.ie:1 of 6 (2978 header octets) (2639 body octets) flushed ... ----------------------------- The messages seem to come over OK, so it

...SSL mechanism # start_tls mechanism uses the normal LDAP port, LDAPS typically 636 ssl no # OpenLDAP SSL options # Require and verify server certificate (yes/no) #tls_checkpeer yes # CA certificates for server certificate verification tls_cacertfile /etc/openldap/cacerts/cacert.pem tls_cacertdir /etc/openldap/cacerts # Client certificate and key tls_cert /etc/openldap/cacerts/servercert.pem tls_key /etc/openldap/cacerts/serverkey.pem Relevant parts of /etc/pam.d/system-auth: auth required pam_env.so auth sufficient...

Hi all, I'm trying to install ssh server based on x509 certificates with no result. What I've done is the following: - Build openssh4.7p1 after patching with openssh-4.7p1+x509-6.1.diff.gz without error using ./configure --prefix=/opt/ssh && make && make install in both server and client machines - Create minimal openssl ca structure under /opt/ssh/etc/ca ( self

I have been trying to get set of libvirtd system up and running. My PKI infrastructure involves a root CA and several intermediate CAs. I am trying to get the machines to trust each other across the different intermediate CAs. This is what I have so far: Libvirtd is starting and listening on tls port 16514 I have configured client/server certs/keys and it seems to be using all of these

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all, This question may be slightly OT for this list, but it does concern securing services on my FreeBSD servers :-) At the moment I have some existing (self-signed) SSL certs for Dovecot, Exim and Apache. It's mostly only me that uses them for now, but I'm planning on expanding that, so want to try and do things "right". My

A very ignorant question, sans doute. I get my certificates from cacert.org, to whom I am very grateful. I follow what I take to be the official procedure, first creating <server>.key and <server>.csr on my server and then getting <server>.crt by going to Server Certificate=>New at the cacert site. I then place the key certficate *.key in /etc/pki/tls/private/ and what I

Hi Folks I've gone back over the list and the only reference I've found to "Invalid argument (22)" is here: http://lists.samba.org/archive/rsync/2006-May/015478.html That seems a different context of character set mismatches. The common parts to my errors are: rsync: rsync_xal_set: lsetxattr("...","security.selinux") failed: Invalid argument (22) And: