Results 1 to 6 of 6

Thread: [SOLVED] Problem with install the self-signed certificate on zimbra 5.0.10_GA_2638.RH

Hybrid View

  1. #1
    Join Date
    Oct 2007
    Posts
    30
    Rep Power
    7

    Default [SOLVED] Problem with install the self-signed certificate on zimbra 5.0.10_GA_2638.RH

    Hello all,
    When i renew my certificates by web-admin, i got o error "Your certificate was not install due to the error: system failure: XXXXX ERROR: failed to create jetty.pkcs12"
    and i can not start my zimbra mail server. This is my log
    "
    Failed to start slapd. Attempting debug start to determine error.
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:647
    TLS: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib ssl_rsa.c:669
    main: TLS init def ctx failed: -1
    "
    Please tell me how i can fix this. I result on forum but i cannot see a solution
    Thank you very much

  2. #2
    Join Date
    Oct 2007
    Posts
    30
    Rep Power
    7

    Smile

    Hello all,
    I fixed this error. I did by following
    (Base on http://wiki.zimbra.com/index.php?tit...SL_Certificate)

    As Root:
    rm -rf /opt/zimbra/ssl
    mkdir /opt/zimbra/ssl
    chown zimbra:zimbra /opt/zimbra/ssl
    chown zimbra:zimbra /opt/zimbra/java/jre/lib/security/cacerts
    chmod 644 /opt/zimbra/java/jre/lib/security/cacerts

    As zimbra:
    keytool -delete -alias my_ca -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
    keytool -delete -alias jetty -keystore /opt/zimbra/mailboxd/etc/keystore -storepass zimbra
    zmlocalconfig -s -m nokey mailboxd_keystore_password

    As root:
    /opt/zimbra/bin/zmcertmgr createca -new
    /opt/zimbra/bin/zmcertmgr deployca -localonly
    /opt/zimbra/bin/zmcertmgr createcrt self -new
    /opt/zimbra/bin/zmcertmgr deploycrt self

    As zimbra
    zmcontrol start

    Hope this will help you
    Vinh Huynh

  3. #3
    Join Date
    Apr 2007
    Posts
    25
    Rep Power
    8

    Default

    Thank you very much, we had a similar problem when updating from 6.0.0 to 6.0.3 :

    This appears to be 6.0.0_GA
    Stopping mysql...done.
    Checking ldap status...not running.
    Running zmldapapplyldif...failed.
    Checking ldap status...not running.
    Starting ldap...failed with exit code: 256.
    main: TLS init def ctx failed: -1
    UPGRADE FAILED - exiting.

    Solved with your solution.

  4. #4
    Join Date
    May 2007
    Posts
    18
    Rep Power
    8

    Default

    Upgraded from 5.0.18 to 5.0.21 and now i cant stard my server my server:

    Code:
            Starting ldap...Done.
    FAILED
    Failed to start slapd.  Attempting debug start to determine error.
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:650
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:650
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:650
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:650
    TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:650
    TLS: error:02001002:system library:fopen:No such file or directory bss_file.c:356
    TLS: error:20074002:BIO routines:FILE_CTRL:system lib bss_file.c:358
    main: TLS init def ctx failed: -1
    I already tried the solution on this post all teh steps went ok but the result is the same. I dont know what to do next my server wont start and we lost all the emails for 100 people we only operate one Zimbra server.

  5. #5
    Join Date
    Jun 2009
    Posts
    10
    Rep Power
    6

    Default

    If you have any problems to start ldap use this instead , it worked to me in zimbra 7

    As Root:
    rm -rf /opt/zimbra/ssl
    mkdir /opt/zimbra/ssl
    chown zimbra:zimbra /opt/zimbra/ssl
    chown zimbra:zimbra /opt/zimbra/java/jre/lib/security/cacerts
    chmod 644 /opt/zimbra/java/jre/lib/security/cacerts

  6. #6
    Join Date
    Nov 2009
    Posts
    9
    Rep Power
    5

    Default

    Thankyou,

    Got me past an upgraded from ubuntu 8.04 32bit to 10.04 32bit with zcs 7.21

Similar Threads

  1. zimbra install with perpetually broken logger/stats
    By jptech in forum Installation
    Replies: 8
    Last Post: 09-29-2008, 02:33 PM
  2. [SOLVED] Clamav problem ? What's happening ?
    By aNt1X in forum Installation
    Replies: 23
    Last Post: 02-14-2008, 04:43 AM
  3. Unable to start tomcat
    By chanck in forum Administrators
    Replies: 11
    Last Post: 06-11-2006, 12:58 AM
  4. 3.1 on FC4 problems
    By cohnhead in forum Installation
    Replies: 8
    Last Post: 05-26-2006, 11:16 AM
  5. Mail logs
    By Rick Baker in forum Installation
    Replies: 8
    Last Post: 01-17-2006, 03:33 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •