You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "ironside (JIRA)" <di...@incubator.apache.org> on 2009/03/12 23:08:50 UTC
[jira] Created: (DIR-243) External Keystore Fails: invalid property
'certificatePassword'
External Keystore Fails: invalid property 'certificatePassword'
---------------------------------------------------------------
Key: DIR-243
URL: https://issues.apache.org/jira/browse/DIR-243
Project: Directory
Issue Type: Bug
Environment: Windows Server 2003
Reporter: ironside
Assignee: Alex Karasulu
I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
1. Created keystore according to documentation.
2. Setup external keystore and modified Server.xml
3. Unable to restart server due to the following error:
invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
<ldapService id="ldapsService"
enabled="true"
ipPort="10636"
keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
certificatePassword="secret"
enableLdaps="true">
<directoryService>#directoryService</directoryService>
<socketAcceptor>#socketAcceptor</socketAcceptor>
</ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Alfonsas Stonis (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12696401#action_12696401 ]
Alfonsas Stonis commented on DIRSERVER-1328:
--------------------------------------------
I assume it is going to be fixed in 1.5.5. Till it is not released is there any work around? I am using it on production, so I do not want to install development version.
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Resolved: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Alfonsas Stonis (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Alfonsas Stonis resolved DIRSERVER-1328.
----------------------------------------
Resolution: Fixed
Fix Version/s: 1.5.4
Thanks Bhaskar. Your fix works. I had two installation of apacheds. Forgot about one. After I put jar to right location all worked fine.
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Fix For: 1.5.4
>
> Attachments: 1328.diff, apacheds-protocol-ldap-1.5.4.jar
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Alfonsas Stonis (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12707238#action_12707238 ]
Alfonsas Stonis commented on DIRSERVER-1328:
--------------------------------------------
Thanks Bhaskar. Unfortunately this fix does not work. I still get error message:
jvm 1 | [15:16:35] ERROR [org.apache.directory.daemon.Bootstrapper] - Failed on null.init(InstallationLayout, String[])
jvm 1 | org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ldapsService' defined in URL [file:/var/lib/apacheds-1.5.4/default/conf/server.xml]: Initialization of bean failed; nested exception is org.springframework.beans.InvalidPropertyException: Invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
jvm 1 | Caused by:
jvm 1 | org.springframework.beans.InvalidPropertyException: Invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
jvm 1 | at org.springframework.beans.BeanWrapperImpl.convertForProperty(BeanWrapperImpl.java:376)
jvm 1 | at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1105)
jvm 1 | at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:861)
jvm 1 | at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:421)
jvm 1 | at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:251)
jvm 1 | at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:156)
jvm 1 | at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:248)
jvm 1 | at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:160)
jvm 1 | at org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:287)
jvm 1 | at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:352)
jvm 1 | at org.apache.xbean.spring.context.FileSystemXmlApplicationContext.<init>(FileSystemXmlApplicationContext.java:149)
jvm 1 | at org.apache.xbean.spring.context.FileSystemXmlApplicationContext.<init>(FileSystemXmlApplicationContext.java:48)
jvm 1 | at org.apache.directory.server.Service.init(Service.java:60)
jvm 1 | at org.apache.directory.daemon.Bootstrapper.callInit(Bootstrapper.java:151)
jvm 1 | at org.apache.directory.daemon.TanukiBootstrapper.start(TanukiBootstrapper.java:51)
jvm 1 | at org.tanukisoftware.wrapper.WrapperManager$12.run(WrapperManager.java:2788)
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Attachments: 1328.diff, apacheds-protocol-ldap-1.5.4.jar
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Alfonsas Stonis (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12696390#action_12696390 ]
Alfonsas Stonis commented on DIRSERVER-1328:
--------------------------------------------
I have the same problem with version 1.5.4.
[13:56:48] ERROR [org.apache.directory.daemon.Bootstrapper] - Failed on null.init(InstallationLayout, String[])
jvm 1 | org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ldapsService' defined in URL [file:/var/lib/apacheds-1.5.4/default/conf/server.xml]: Initialization of bean failed; nested exception is org.springframework.beans.InvalidPropertyException: Invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
jvm 1 | Caused by:
jvm 1 | org.springframework.beans.InvalidPropertyException: Invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
jvm 1 | at org.springframework.beans.BeanWrapperImpl.convertForProperty(BeanWrapperImpl.java:376)
jvm 1 | at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1105)
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Assigned: (DIR-243) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Emmanuel Lecharny (JIRA)" <di...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/DIR-243?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Emmanuel Lecharny reassigned DIR-243:
-------------------------------------
Assignee: (was: Alex Karasulu)
Those who feel like that can fix it will assign themselves on the issue.
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIR-243
> URL: https://issues.apache.org/jira/browse/DIR-243
> Project: Directory
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIR-243) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Emmanuel Lecharny (JIRA)" <di...@incubator.apache.org>.
[ https://issues.apache.org/jira/browse/DIR-243?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12681520#action_12681520 ]
Emmanuel Lecharny commented on DIR-243:
---------------------------------------
Which version of ADS ?
Please give us some information that can help us to determinate if it's a real bug or something which is already fixed.
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIR-243
> URL: https://issues.apache.org/jira/browse/DIR-243
> Project: Directory
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Assignee: Alex Karasulu
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Bhaskar Maddala (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12706067#action_12706067 ]
Bhaskar Maddala commented on DIRSERVER-1328:
--------------------------------------------
I pulled down the 1.5.4 tagged version from svn and LdapService and LdapsInitializer are missing support for both certificatePassword and keystore (also nbTcpThread, but I did not need it). Attached a diff file that includes the changes. Tested by replacing the ldap protocol jar in 1.5.4 distribution with the one I created.
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Attachments: 1328.diff
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Emmanuel Lecharny (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Emmanuel Lecharny closed DIRSERVER-1328.
----------------------------------------
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Fix For: 1.5.4
>
> Attachments: 1328.diff, apacheds-protocol-ldap-1.5.4.jar
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Bhaskar Maddala (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bhaskar Maddala updated DIRSERVER-1328:
---------------------------------------
Attachment: apacheds-protocol-ldap-1.5.4.jar
Attached binary jar file that supports the certificatePassword and keystore properties in the configuration, in case someone still requires a "workaround"
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Attachments: 1328.diff, apacheds-protocol-ldap-1.5.4.jar
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Stefan Zoerner (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12681525#action_12681525 ]
Stefan Zoerner commented on DIRSERVER-1328:
-------------------------------------------
I have recently tried this out with the trunk (upcoming 1.5.5), and it worked just fine. I assume, ironside uses 1.5.4. Without this information, we can't go any further ...
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Emmanuel Lecharny (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12681526#action_12681526 ]
Emmanuel Lecharny commented on DIRSERVER-1328:
----------------------------------------------
Yeah, this is my feeling, too. I have fixed it one moth ago, AFAIR.
Please, when creating an issue, don't think that all the fields are optional. They _really_ help !
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Bhaskar Maddala (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bhaskar Maddala updated DIRSERVER-1328:
---------------------------------------
Attachment: 1328.diff
missed the attachment last time
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Attachments: 1328.diff
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (DIRSERVER-1328) External Keystore Fails: invalid
property 'certificatePassword'
Posted by "Bhaskar Maddala (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/DIRSERVER-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12707319#action_12707319 ]
Bhaskar Maddala commented on DIRSERVER-1328:
--------------------------------------------
I pulled down the 1.5.4 version of the release and replace the protocol-ldap jar with the one I attached above threw in the certificatePassword and keystoreFile setting and verified that the ldap server was using the certificate I specified
you should take a look at the instructions from here
http://directory.apache.org/apacheds/1.5/33-how-to-enable-ssl.html
My ldapService
<ldapService id="ldapsService"
enabled="true"
ipPort="10636"
enableLdaps="true"
certificatePassword="secret"
keystoreFile="/home/bhaskar/apacheds_1.5.4/zanzibar.ks">
<directoryService>#directoryService</directoryService>
<socketAcceptor>#socketAcceptor</socketAcceptor>
</ldapService>
I think you have not replace the protocol-ldap jar or replaced it at the wrong location, i.e. not in the location being used for the classpath when launching the directory server
> External Keystore Fails: invalid property 'certificatePassword'
> ---------------------------------------------------------------
>
> Key: DIRSERVER-1328
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1328
> Project: Directory ApacheDS
> Issue Type: Bug
> Environment: Windows Server 2003
> Reporter: ironside
> Attachments: 1328.diff, apacheds-protocol-ldap-1.5.4.jar
>
>
> I was trying to enable SSL with external keystore (SSL works without the external keystore using Directory Studio; my client requires the certificate). I'm using a standard install of Directory (out of the box).
> 1. Created keystore according to documentation.
> 2. Setup external keystore and modified Server.xml
> 3. Unable to restart server due to the following error:
> invalid property 'certificatePassword' of bean class [org.apache.directory.server.ldap.LdapService]: No property 'certificatePassword' found
> If I remove this property, but leave my keystoreFile property in, I also get this error for 'keystoreFile'. Below is my ldapservice def:
> <ldapService id="ldapsService"
> enabled="true"
> ipPort="10636"
> keystoreFile="C:/Program Files/Apache Directory Server/instances/default/conf/AGS93-LDAPS.ks"
> certificatePassword="secret"
> enableLdaps="true">
> <directoryService>#directoryService</directoryService>
> <socketAcceptor>#socketAcceptor</socketAcceptor>
> </ldapService>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.