Results 1 to 4 of 4

Thread: slap_client_connect: Error, ldap_start_tls failed (-11)

Hybrid View

  1. #1
    Join Date
    Jul 2009
    Posts
    51
    Rep Power
    6

    Default slap_client_connect: Error, ldap_start_tls failed (-11)

    Hi zimbra users,


    This is a 3 server setup in Production use. (mta1 with ldap master, mta2 with ldap replica and mailbox)


    I get below error on my replica ldap server where mta2 is also running.

    slapd[12550]: slap_client_connect: URI=ldap://mta1.example.com:389 Error, ldap_start_tls failed (-11)

    So New email accounts are Not updated to my mailbox server since ldap_url on mailbox server has been set to ldap replica first, then to master ldap server. Just for the moment, I changed ldap order to master ldap first then to ldap replica on mailbox server according to the below url

    Configuring Zimbra Servers to use LDAP Replica


    So, Now all the email accounts are updated to mailbox server.


    Anyway, How can I solve that issue?



    on ldap master,

    ls -l /opt/zimbra/conf/ca/

    total 8
    lrwxrwxrwx 1 root root 6 Jul 13 2012 6234f632.0 -> ca.pem
    -rw-r----- 1 zimbra zimbra 912 Jul 13 2012 ca.key
    -rw-r----- 1 zimbra zimbra 960 Jul 13 2012 ca.pem


    on ldap replica,

    ls -l /opt/zimbra/conf/ca/

    total 8
    lrwxrwxrwx 1 root root 6 Jul 13 2012 6234f632.0 -> ca.pem
    -rw-r----- 1 zimbra zimbra 912 Jul 13 2012 ca.key
    -rw-r----- 1 zimbra zimbra 960 Jul 13 2012 ca.pem


    Zimbra version is 7.2.0 64 bit FOSS Edition


    hope to hear from you

  2. #2
    Join Date
    Jul 2007
    Posts
    343
    Rep Power
    8

    Default

    Hope this link will help you LDAP Multi Master Replication - Zimbra :: Wiki
    ~=Prashant=~

  3. #3
    Join Date
    Jul 2009
    Posts
    51
    Rep Power
    6

    Default

    Quote Originally Posted by prashant View Post

    Thanks for the reply.

    What about this? if we turn off starttls for replication


    Steps (ZCS 7.1.4+)

    1. On every replica server, become the user zimbra:

    su - zimbra

    2. Run the following command:

    /opt/zimbra/libexec/zmldapreplicatool -t off

    3. Restart the ldap service:

    ldap stop
    ldap start

    How to turn on again ? can I achieve with below command?


    /opt/zimbra/libexec/zmldapreplicatool -t on


    source- Turning off starttls for replication - Zimbra :: Wiki

  4. #4
    Join Date
    May 2007
    Location
    Zimbra
    Posts
    1,285
    Rep Power
    10

    Default

    The error generally indicates your certs expired. Have you validated them?
    Quanah Gibson-Mount
    Server Architect
    Zimbra, Inc
    --------------------
    Zimbra :: the leader in open source messaging and collaboration

Similar Threads

  1. ERROR : calendar sync failed
    By hitech73 in forum Error Reports
    Replies: 2
    Last Post: 05-26-2014, 03:02 AM
  2. Replies: 1
    Last Post: 11-29-2012, 01:21 PM
  3. ERROR: Sieve - Evaluation failed ?
    By tiger2000 in forum Administrators
    Replies: 0
    Last Post: 03-07-2010, 07:14 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •