Environment
Novell NetWare 6.0
Novell NetWare 6.0 Support Pack 2
Novell eDirectory 8.6 for All Platforms
Novell NetWare 6.0 Support Pack 2
Novell eDirectory 8.6 for All Platforms
Situation
Configuring SSL and when browsing for the proper SSL certificate nothing shows up.
Setting up SSL listener on port 636 gives error PN_SSLInitPort: SAS CryptInit returned (-11)
TCPCON doesn't show the server listening on port 389
Can't make an authenticated connection with LDAP using SSL
Setting up SSL listener on port 636 gives error PN_SSLInitPort: SAS CryptInit returned (-11)
TCPCON doesn't show the server listening on port 389
Can't make an authenticated connection with LDAP using SSL
LDAP Server object, selecting a Server Certificate, Nothing shows up in the Select SSL Certificate window
Resolution
LDAP looks at the "NDSPKI:key Material DN" attribute on the SAS object for the same that LDAP is running on. If you can't select the SSL certificate in the properties of the LDAP server then SAS Service object is corrupted and you will need to delete it and recreate it.
To delete the object go into console one right click the SAS Service object for the server and select delete. Before recreating the object you make sure the obitituary clears. Once the object has been deleted, go to the server console and run PKIDIAG.NLM (PKIDIAG.NLM will require you to login with rights). Once you have logged into PKIDIAG choose option 4 and then 0. The repair should recreate a new SAS object in DS.
Download PKIDIAG.NLM from https://support.novell.com/filefinder .
Additional Information
Thread pool status: Total:1 Peak:1 Busy:1
Work info status: Total:1 Peak:0 Busy:0
Waiting for 0 worker threads, 0 monitor threads, and 1 misc threads to terminate
Background thread 0x9d terminated
"LDAP v3 for Novell eDirectory 8.6.2" v10350.08 stopped
SSL initialized successfully
Server configuration has completed
Thread pool status: Total:1 Peak:1 Busy:1
Work info status: Total:1 Peak:1 Busy:0
Restarting listener due to updated configuration
Setting up TCP listener on port 389
Setting up SSL listener on port 636
PN_SSLInitPort: SAS CryptInit returned (-11)
LDAP has not been configured with a valid SSL certificate.
SSL connections will fail until configured.
See Novell PKI Services and LDAP Services for NDS
help for more information.
"LDAP v3 for Novell eDirectory 8.6.2" v10350.08 started
Unlimited concurrent connections allowed
Formerly known as TID# 10082991
Work info status: Total:1 Peak:0 Busy:0
Waiting for 0 worker threads, 0 monitor threads, and 1 misc threads to terminate
Background thread 0x9d terminated
"LDAP v3 for Novell eDirectory 8.6.2" v10350.08 stopped
SSL initialized successfully
Server configuration has completed
Thread pool status: Total:1 Peak:1 Busy:1
Work info status: Total:1 Peak:1 Busy:0
Restarting listener due to updated configuration
Setting up TCP listener on port 389
Setting up SSL listener on port 636
PN_SSLInitPort: SAS CryptInit returned (-11)
LDAP has not been configured with a valid SSL certificate.
SSL connections will fail until configured.
See Novell PKI Services and LDAP Services for NDS
help for more information.
"LDAP v3 for Novell eDirectory 8.6.2" v10350.08 started
Unlimited concurrent connections allowed
Formerly known as TID# 10082991