Hello, I seem completely unable to get TLS support compiled into OpenLDAP (2.1.30-r5). As far as I understand TLS comes from OpenSSL (0.9.7e-r1). When I start /etc/init.d/slapd I get the following error in /var/log/messages: Aug 24 22:45:01 tuko slapd[31108]: daemon: TLS not supported (ldaps://) Aug 24 22:45:01 tuko slapd[31108]: slapd stopped. Aug 24 22:45:01 tuko slapd[31108]: connections_destroy: nothing to destroy. When I compile OpenLDAP I seen in the configure part an option --without-tls, but I really do not know how to enable it. I cannot find the USE flag, and I also do not see in the ebuild where that option is set. I have googled the web, but all I could find is how to manually configure openldap with TLS support, but not how to get it to work with gentoo. From what I can see is that crypt support is compiled in ldap, but appearantly not TLS/SSL... ldd /usr/lib/openldap/slapd | grep crypt libcrypto.so.0.9.7 => /usr/lib/libcrypto.so.0.9.7 (0xb7d55000) libcrypt.so.1 => /lib/libcrypt.so.1 (0xb7d26000) The forums do not mention this problem, nor does the wiki. I really need some help with this. with regards, Robbin Bonthond Reproducible: Always Steps to Reproduce: 1.emerge openssl openldap pam_ldap nss_ldap migrationtools 2.follow http://www.gentoo.org/doc/en/ldap-howto.xml 3./etc/init.d/slapd start Actual Results: # /etc/init.d/slapd start * Starting ldap-server ... [ !! ] # tail /var/log/messages Aug 24 22:55:34 tuko slapd[31250]: daemon: TLS not supported (ldaps://) Aug 24 22:55:34 tuko slapd[31250]: slapd stopped. Aug 24 22:55:34 tuko slapd[31250]: connections_destroy: nothing to destroy. Expected Results: # /etc/init.d/slapd start * Starting ldap-server ... [ OK ] :-) Portage 2.0.51.22-r2 (default-linux/x86/2005.1, gcc-3.3.5-20050130, glibc-2.3.5-r1, 2.6.12-gentoo-r9 i686) ================================================================= System uname: 2.6.12-gentoo-r9 i686 Intel(R) Pentium(R) 4 CPU 2.40GHz Gentoo Base System version 1.6.13 ccache version 2.3 [disabled] dev-lang/python: 2.3.5 sys-apps/sandbox: 1.2.12 sys-devel/autoconf: 2.13, 2.59-r6 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.5 sys-devel/binutils: 2.15.92.0.2-r10 sys-devel/libtool: 1.5.18-r1 virtual/os-headers: 2.6.11-r2 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CBUILD="i686-pc-linux-gnu" CFLAGS="-O2 -mcpu=i686 -fomit-frame-pointer" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/config /var/bind /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-O2 -mcpu=i686 -fomit-frame-pointer" DISTDIR="/usr/portage/distfiles" FEATURES="autoconfig distlocks sandbox sfperms strict" GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="x86 X509 apache apache2 authfile bash-completion bind-mysql calendar cdr chroot clamav clamd clearpasswd command-args cracklib crypt cups dbx dhcp dnsdb dvd dvdr dvdread edirectory elf expat fastcgi fat fax faxonly flatfile flood ftp fwdzone graphviz h323 inetd inifile inode java jboss jce jcs jikes jpeg ldap libclamav lids logrotate mailbox maildir maildrop mcal md5sum mem-cache mgetty mime mimencode modperl mozcalendar mozilla moznocompose moznoirc mozsvg mozxmlterm mp4live neural nousuid openssl pcre php postfix reiserfs samba sftp sharedext sharedmem slp sms smtp snmp spamassassin sqlite sqlite3 virtual-users virus-scan vmdbpostgres webdav userland_GNU kernel_linux elibc_glibc" Unset: ASFLAGS, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS, PORTDIR_OVERLAY
Hmm, ssl is missing in your use flags!