You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@directory.apache.org by Kölbener Lukas <lu...@scs.ch> on 2014/03/07 11:12:38 UTC

[apacheds] ApacheDs not starting after defining a keystore file

Hi

I've set up an apacheDS Server 2.0.0-M15 on a Ubuntu LTS and use the studio to configure it.

I now wanted to switch to ldaps using my own certificate which is officially signed. I saved it in a keystore file and followed the instructions in the basic user guide. But as soon I define something in the "keystore" field one the configuration view in the studio and try to restart, the apacheds server is not starting anymore without any error log:

STATUS | wrapper  | 2014/03/07 11:09:20 | --> Wrapper Started as Daemon
STATUS | wrapper  | 2014/03/07 11:09:20 | Launching a JVM...
INFO   | jvm 1    | 2014/03/07 11:09:22 | Wrapper (Version 3.2.3) http://wrapper.tanukisoftware.org
INFO   | jvm 1    | 2014/03/07 11:09:22 |   Copyright 1999-2006 Tanuki Software, Inc.  All Rights Reserved.
INFO   | jvm 1    | 2014/03/07 11:09:22 |
INFO   | jvm 1    | 2014/03/07 11:09:34 |            _                     _          ____  ____
INFO   | jvm 1    | 2014/03/07 11:09:34 |           / \   _ __    ___  ___| |__   ___|  _ \/ ___|
INFO   | jvm 1    | 2014/03/07 11:09:34 |          / _ \ | '_ \ / _` |/ __| '_ \ / _ \ | | \___ \
INFO   | jvm 1    | 2014/03/07 11:09:34 |         / ___ \| |_) | (_| | (__| | | |  __/ |_| |___) |
INFO   | jvm 1    | 2014/03/07 11:09:34 |        /_/   \_\ .__/ \__,_|\___|_| |_|\___|____/|____/
INFO   | jvm 1    | 2014/03/07 11:09:34 |                |_|
INFO   | jvm 1    | 2014/03/07 11:09:34 |
STATUS | wrapper  | 2014/03/07 11:09:36 | <-- Wrapper Stopped

I don't know how to change the configuration without a running server, so every attempt to define a keystore file end up in reinstalling the apacheDS Server.

I appreciate every kind of help,
Thank you,
Lukas

Re: [apacheds] ApacheDs not starting after defining a keystore file

Posted by Kiran Ayyagari <ka...@apache.org>.

On Fri, Mar 7, 2014 at 3:42 PM, Kölbener Lukas <lu...@scs.ch>wrote:

> Hi
>
> I've set up an apacheDS Server 2.0.0-M15 on a Ubuntu LTS and use the
> studio to configure it.
>
> I now wanted to switch to ldaps using my own certificate which is
> officially signed. I saved it in a keystore file

and did you import the private key as well?
you can use a GUI tool like portecle[1] instead of keytool

[1] http://portecle.sourceforge.net/

> and followed the instructions in the basic user guide. But as soon I
> define something in the "keystore" field one the configuration view in the
> studio and try to restart, the apacheds server is not starting anymore

without any error log:
>
> STATUS | wrapper  | 2014/03/07 11:09:20 | --> Wrapper Started as Daemon
> STATUS | wrapper  | 2014/03/07 11:09:20 | Launching a JVM...
> INFO   | jvm 1    | 2014/03/07 11:09:22 | Wrapper (Version 3.2.3)
> http://wrapper.tanukisoftware.org
> INFO   | jvm 1    | 2014/03/07 11:09:22 |   Copyright 1999-2006 Tanuki
> Software, Inc.  All Rights Reserved.
> INFO   | jvm 1    | 2014/03/07 11:09:22 |
> INFO   | jvm 1    | 2014/03/07 11:09:34 |            _
> _          ____  ____
> INFO   | jvm 1    | 2014/03/07 11:09:34 |           / \   _ __    ___
>  ___| |__   ___|  _ \/ ___|
> INFO   | jvm 1    | 2014/03/07 11:09:34 |          / _ \ | '_ \ / _` |/
> __| '_ \ / _ \ | | \___ \
> INFO   | jvm 1    | 2014/03/07 11:09:34 |         / ___ \| |_) | (_| |
> (__| | | |  __/ |_| |___) |
> INFO   | jvm 1    | 2014/03/07 11:09:34 |        /_/   \_\ .__/
> \__,_|\___|_| |_|\___|____/|____/
> INFO   | jvm 1    | 2014/03/07 11:09:34 |                |_|
> INFO   | jvm 1    | 2014/03/07 11:09:34 |
> STATUS | wrapper  | 2014/03/07 11:09:36 | <-- Wrapper Stopped
>
> I don't know how to change the configuration without a running server, so
> every attempt to define a keystore file end up in reinstalling the apacheDS
> Server.
>
> 1. open config.ldif present in the conf folder of the running server
location
2. go to the entry with the DN
ads-serverId=ldapServer,ou=servers,ads-directoryServiceId=default,ou=config
3. set the path to your keystore file as the value of attribute
'ads-keystoreFile'
4. set the Base64 encoded password as the value for
'ads-certificatePassword'
5. restart the server

if you want to use Studio for configuring again then after step 2 mentioned
above
3. remove the attributes 'ads-keystoreFile' and 'ads-certificatePassword'
4. restart the server
5. open configuration using Studio and update the configuration accordingly

I appreciate every kind of help,
> Thank you,
> Lukas
>



-- 
Kiran Ayyagari
http://keydap.com