Bug 336199

Summary: YaST module - ldap-server
Product: [openSUSE] openSUSE 11.0 Reporter: Andreas Pedersen <alofflambas>
Component: YaST2Assignee: Ralf Haferkamp <ralf>
Status: RESOLVED FEATURE QA Contact: Jiri Srain <jsrain>
Severity: Enhancement    
Priority: P5 - None CC: jsuchome, mc
Version: Alpha 2   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard: FATE#303058
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Attachments: y2log

Description Andreas Pedersen 2007-10-24 00:12:21 UTC 
When I'm enable TLS support and when my certificate is password protected, and when YaST try to start slapd there is no dialog for to insert the password so i need to press <ctrl+c> to continue, and start it manual and then insert the password.

YaST doesn't also change the variable in /etc/sysconfig/openldap when I'm enable TLS support.
OPENLDAP_START_LDAPS="yes"
Comment 1 Matej Horvath 2007-10-24 13:49:16 UTC 
Could you please attach your yast logs (http://en.opensuse.org/YaST/Bugs)?
Comment 2 Andreas Pedersen 2007-10-24 14:14:59 UTC 
Created attachment 180282 [details]
y2log
Comment 3 Ralf Haferkamp 2007-12-03 15:12:26 UTC 
Using password protected certificate keys is currently not supported in yast2-ldap-server. That's why the textbox in the UI says: 
"Certificat Key File (PEM-Format -- Unencrytped)"

The OPENLDAP_START_LDAPS is not necessarily need to use TLS. That's why we don't enable it by default. Most LDAP clients support StartTLS nowadays. I'll treat this part as a feature request and move it to FATE, our feature tracking tool.

I agree, that the error handling has room for improvement in the case when you enter an encrypted key file.

Michael, any hints how I can check if a keyfile is encrypted?
Comment 5 Ralf Haferkamp 2007-12-07 09:25:36 UTC 
Fate Feature #303058

This is now tracked in our feature tracking tool. I'll close this report.
Comment 6 Stephan Kulow 2008-06-25 09:10:50 UTC 
mass reopening of later+remind bugs of 11.0
Comment 7 Ralf Haferkamp 2008-06-25 09:16:48 UTC 
Moving to state: FEATURE which was not available when this bug was close originally.