You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@directory.apache.org by Ike Ikonne <ii...@us.ibm.com> on 2017/10/07 05:08:58 UTC
How do I change the default admin private/public key through ApacheDS
Studio
Hi all,
I have been trying to generate and install a new private/public key
for Apache DS listening on port 636. I generated a private key
in PKCS8 format and with associated public key signed by the CA, but it
appears
that the way that I am installing it through Apache DS studio
is not working. I get Handshake error when I try to connect via
Apache DS studio on port 636. I would appreciate it if someone could
enable me with the steps for installing privateKey/Public Key
for the Apache Directory server via Apache DS studio.
Thanks,
Ike
Re: How do I change the default admin private/public key through
ApacheDS Studio
Posted by Stefan Seelmann <ma...@stefan-seelmann.de>.
On 10/08/2017 07:09 AM, Ike Ikonne wrote:
> The version of my apache DS studio is:
>
> Apache Directory Studio
>
> Version: 2.0.0.v20130628
That's the version of "Studio", but which version of the server
(ApacheDS) do you use?
>> Unable to load the configuration.
>> - ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
>>
>> org.apache.directory.api.ldap.model.exception.LdapNoSuchAttributeException:
The configuration option and attribute ads-hashalgorithm was added to
the server (ApacheDS) in 2015. But you use a Studio version from 2013
which doesn't know that configuration option. So it seems you don't use
the embedded ApacheDS in that Studio versionn, right?
Can you update to latest Studio version?
Kind Regards,
Stefan
Re: How do I change the default admin private/public key through ApacheDS
Studio
Posted by Ike Ikonne <ii...@us.ibm.com>.
Hi Emmanuel,
It is actually included in my last message
The version of my apache DS studio is:
Apache Directory Studio
Version: 2.0.0.v20130628
© 2006-2013 Apache Software Foundation - All right reserved.
From: Emmanuel Lécharny <el...@gmail.com>
To: users@directory.apache.org
Date: 10/07/2017 12:57 PM
Subject: Re: How do I change the default admin private/public key
through ApacheDS Studio
Le 07/10/2017 à 19:08, Ike Ikonne a écrit :
> Hi Emmanuel,
>
> I got a stacktrace when a select the Configuration option of the apache
> DS studio.
Which version of Studio and ApacheDS are you using ?
>
>
> Unable to load the configuration.
> - ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
>
org.apache.directory.api.ldap.model.exception.LdapNoSuchAttributeException:
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
> at
>
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:293)
> at
>
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:47)
> at
>
org.apache.directory.api.ldap.schemamanager.impl.DefaultSchemaManager.lookupAttributeTypeRegistry(DefaultSchemaManager.java:1604)
> at
>
org.apache.directory.api.ldap.model.entry.DefaultEntry.<init>(DefaultEntry.java:311)
> at
>
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.readConfiguration(LoadConfigurationRunnable.java:359)
> at
>
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.getConfiguration(LoadConfigurationRunnable.java:182)
> at
>
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.run(LoadConfigurationRunnable.java:127)
> at
>
org.apache.directory.studio.common.core.jobs.StudioJob.run(StudioJob.java:83)
> at org.eclipse.core.internal.jobs.Worker.run(Worker.java:54)
> Caused by: org.apache.directory.api.ldap.model.exception.LdapException:
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
> at
>
org.apache.directory.api.ldap.model.schema.registries.DefaultSchemaObjectRegistry.lookup(DefaultSchemaObjectRegistry.java:176)
> at
>
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:289)
> ... 8 more
>
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
>
> The version of my apache DS studio is:
>
> Apache Directory Studio
>
> Version: 2.0.0.v20130628
>
> © 2006-2013 Apache Software Foundation - All right reserved.
> Visit
https://urldefense.proofpoint.com/v2/url?u=http-3A__directory.apache.org_studio&d=DwIFaQ&c=jf_iaSHvJObTbx-siA1ZOg&r=agWnQZZC-kGOwhPE6XrovGlSsnjanlizIW98DPVSs3M&m=RF_YXJaxihmlWk4tpuiU2YUcioFKndfjXubERLCrarc&s=CxVeUNYueBZDHr4okz-PZDMqurOwj3pJ97hx4vPFby8&e=
>
> This product is licensed under the terms of the Apache License 2.0.
>
> Some icons from FAMFAMFAM
https://urldefense.proofpoint.com/v2/url?u=http-3A__www.famfamfam.com_lab_icons_silk&d=DwIFaQ&c=jf_iaSHvJObTbx-siA1ZOg&r=agWnQZZC-kGOwhPE6XrovGlSsnjanlizIW98DPVSs3M&m=RF_YXJaxihmlWk4tpuiU2YUcioFKndfjXubERLCrarc&s=coLTf3H72IYEEl3mlWmr9v7WIX0TJPOp7dMg_38fkIM&e=
>
>
>
>
> From: Emmanuel Lécharny <el...@gmail.com>
> To: users@directory.apache.org
> Date: 10/07/2017 02:55 AM
> Subject: Re: How do I change the default admin private/public key
> through ApacheDS Studio
>
>
>
> Hi,
>
>
> Le 07/10/2017 à 07:08, Ike Ikonne a écrit :
>> Hi all,
>>
>> I have been trying to generate and install a new private/public key
>> for Apache DS listening on port 636. I generated a private key
>> in PKCS8 format and with associated public key signed by the CA, but it
>> appears
>> that the way that I am installing it through Apache DS studio
>> is not working. I get Handshake error when I try to connect via
>> Apache DS studio on port 636. I would appreciate it if someone could
>> enable me with the steps for installing privateKey/Public Key
>> for the Apache Directory server via Apache DS studio.
> The simplest way would be to set the private key in an external
> keystore, as explained in
>
https://urldefense.proofpoint.com/v2/url?u=http-3A__directory.staging.apache.org_apacheds_basic-2Dug_3.3-2Denabling-2Dssl.html&d=DwIFaQ&c=jf_iaSHvJObTbx-siA1ZOg&r=agWnQZZC-kGOwhPE6XrovGlSsnjanlizIW98DPVSs3M&m=tAcHLr7mLU_WskVeqcJbdMQASqhBjL6q3bw5VIEF1xc&s=aA4tiT926p4W_V0mkg_eTXpWgHv37o6J2XZYtXQYGhM&e=
>
>
> You can also store the public and private key in the user's entry
> (privateKey and publicKey attributes) but it's less safe. --
>
> Emmanuel Lecharny
>
> Symas.com
> directory.apache.org
>
>
>
>
>
>
--
Emmanuel Lecharny
Symas.com
directory.apache.org
Re: How do I change the default admin private/public key through
ApacheDS Studio
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 07/10/2017 à 19:08, Ike Ikonne a écrit :
> Hi Emmanuel,
>
> I got a stacktrace when a select the Configuration option of the apache
> DS studio.
Which version of Studio and ApacheDS are you using ?
>
>
> Unable to load the configuration.
> - ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
> org.apache.directory.api.ldap.model.exception.LdapNoSuchAttributeException:
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
> at
> org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:293)
> at
> org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:47)
> at
> org.apache.directory.api.ldap.schemamanager.impl.DefaultSchemaManager.lookupAttributeTypeRegistry(DefaultSchemaManager.java:1604)
> at
> org.apache.directory.api.ldap.model.entry.DefaultEntry.<init>(DefaultEntry.java:311)
> at
> org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.readConfiguration(LoadConfigurationRunnable.java:359)
> at
> org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.getConfiguration(LoadConfigurationRunnable.java:182)
> at
> org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.run(LoadConfigurationRunnable.java:127)
> at
> org.apache.directory.studio.common.core.jobs.StudioJob.run(StudioJob.java:83)
> at org.eclipse.core.internal.jobs.Worker.run(Worker.java:54)
> Caused by: org.apache.directory.api.ldap.model.exception.LdapException:
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
> at
> org.apache.directory.api.ldap.model.schema.registries.DefaultSchemaObjectRegistry.lookup(DefaultSchemaObjectRegistry.java:176)
> at
> org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:289)
> ... 8 more
>
> ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
>
> The version of my apache DS studio is:
>
> Apache Directory Studio
>
> Version: 2.0.0.v20130628
>
> © 2006-2013 Apache Software Foundation - All right reserved.
> Visit http://directory.apache.org/studio
>
> This product is licensed under the terms of the Apache License 2.0.
>
> Some icons from FAMFAMFAM http://www.famfamfam.com/lab/icons/silk
>
>
>
>
> From: Emmanuel Lécharny <el...@gmail.com>
> To: users@directory.apache.org
> Date: 10/07/2017 02:55 AM
> Subject: Re: How do I change the default admin private/public key
> through ApacheDS Studio
>
>
>
> Hi,
>
>
> Le 07/10/2017 à 07:08, Ike Ikonne a écrit :
>> Hi all,
>>
>> I have been trying to generate and install a new private/public key
>> for Apache DS listening on port 636. I generated a private key
>> in PKCS8 format and with associated public key signed by the CA, but it
>> appears
>> that the way that I am installing it through Apache DS studio
>> is not working. I get Handshake error when I try to connect via
>> Apache DS studio on port 636. I would appreciate it if someone could
>> enable me with the steps for installing privateKey/Public Key
>> for the Apache Directory server via Apache DS studio.
> The simplest way would be to set the private key in an external
> keystore, as explained in
> https://urldefense.proofpoint.com/v2/url?u=http-3A__directory.staging.apache.org_apacheds_basic-2Dug_3.3-2Denabling-2Dssl.html&d=DwIFaQ&c=jf_iaSHvJObTbx-siA1ZOg&r=agWnQZZC-kGOwhPE6XrovGlSsnjanlizIW98DPVSs3M&m=tAcHLr7mLU_WskVeqcJbdMQASqhBjL6q3bw5VIEF1xc&s=aA4tiT926p4W_V0mkg_eTXpWgHv37o6J2XZYtXQYGhM&e=
>
>
> You can also store the public and private key in the user's entry
> (privateKey and publicKey attributes) but it's less safe. --
>
> Emmanuel Lecharny
>
> Symas.com
> directory.apache.org
>
>
>
>
>
>
--
Emmanuel Lecharny
Symas.com
directory.apache.org
Re: How do I change the default admin private/public key through ApacheDS
Studio
Posted by Ike Ikonne <ii...@us.ibm.com>.
Hi Emmanuel,
I got a stacktrace when a select the Configuration option of the apache
DS studio.
Unable to load the configuration.
- ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
org.apache.directory.api.ldap.model.exception.LdapNoSuchAttributeException:
ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
at
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:293)
at
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:47)
at
org.apache.directory.api.ldap.schemamanager.impl.DefaultSchemaManager.lookupAttributeTypeRegistry(DefaultSchemaManager.java:1604)
at
org.apache.directory.api.ldap.model.entry.DefaultEntry.<init>(DefaultEntry.java:311)
at
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.readConfiguration(LoadConfigurationRunnable.java:359)
at
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.getConfiguration(LoadConfigurationRunnable.java:182)
at
org.apache.directory.studio.apacheds.configuration.v2.jobs.LoadConfigurationRunnable.run(LoadConfigurationRunnable.java:127)
at
org.apache.directory.studio.common.core.jobs.StudioJob.run(StudioJob.java:83)
at org.eclipse.core.internal.jobs.Worker.run(Worker.java:54)
Caused by: org.apache.directory.api.ldap.model.exception.LdapException:
ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
at
org.apache.directory.api.ldap.model.schema.registries.DefaultSchemaObjectRegistry.lookup(DefaultSchemaObjectRegistry.java:176)
at
org.apache.directory.api.ldap.model.schema.registries.DefaultAttributeTypeRegistry.lookup(DefaultAttributeTypeRegistry.java:289)
... 8 more
ERR_04269 ATTRIBUTE_TYPE for OID ads-hashalgorithm does not exist!
The version of my apache DS studio is:
Apache Directory Studio
Version: 2.0.0.v20130628
© 2006-2013 Apache Software Foundation - All right reserved.
Visit http://directory.apache.org/studio
This product is licensed under the terms of the Apache License 2.0.
Some icons from FAMFAMFAM http://www.famfamfam.com/lab/icons/silk
From: Emmanuel Lécharny <el...@gmail.com>
To: users@directory.apache.org
Date: 10/07/2017 02:55 AM
Subject: Re: How do I change the default admin private/public key
through ApacheDS Studio
Hi,
Le 07/10/2017 à 07:08, Ike Ikonne a écrit :
> Hi all,
>
> I have been trying to generate and install a new private/public key
> for Apache DS listening on port 636. I generated a private key
> in PKCS8 format and with associated public key signed by the CA, but it
> appears
> that the way that I am installing it through Apache DS studio
> is not working. I get Handshake error when I try to connect via
> Apache DS studio on port 636. I would appreciate it if someone could
> enable me with the steps for installing privateKey/Public Key
> for the Apache Directory server via Apache DS studio.
The simplest way would be to set the private key in an external
keystore, as explained in
https://urldefense.proofpoint.com/v2/url?u=http-3A__directory.staging.apache.org_apacheds_basic-2Dug_3.3-2Denabling-2Dssl.html&d=DwIFaQ&c=jf_iaSHvJObTbx-siA1ZOg&r=agWnQZZC-kGOwhPE6XrovGlSsnjanlizIW98DPVSs3M&m=tAcHLr7mLU_WskVeqcJbdMQASqhBjL6q3bw5VIEF1xc&s=aA4tiT926p4W_V0mkg_eTXpWgHv37o6J2XZYtXQYGhM&e=
You can also store the public and private key in the user's entry
(privateKey and publicKey attributes) but it's less safe. --
Emmanuel Lecharny
Symas.com
directory.apache.org
Re: How do I change the default admin private/public key through
ApacheDS Studio
Posted by Emmanuel Lécharny <el...@gmail.com>.
Hi,
Le 07/10/2017 à 07:08, Ike Ikonne a écrit :
> Hi all,
>
> I have been trying to generate and install a new private/public key
> for Apache DS listening on port 636. I generated a private key
> in PKCS8 format and with associated public key signed by the CA, but it
> appears
> that the way that I am installing it through Apache DS studio
> is not working. I get Handshake error when I try to connect via
> Apache DS studio on port 636. I would appreciate it if someone could
> enable me with the steps for installing privateKey/Public Key
> for the Apache Directory server via Apache DS studio.
The simplest way would be to set the private key in an external
keystore, as explained in
http://directory.staging.apache.org/apacheds/basic-ug/3.3-enabling-ssl.html
You can also store the public and private key in the user's entry
(privateKey and publicKey attributes) but it's less safe. --
Emmanuel Lecharny
Symas.com
directory.apache.org