OpenLDAP error configuring StartTLS: ldap_modify: Other (e.g., implementation specific) error (80)

tls openldap

I solved this problem by changing the order in the file.ldif like this:

dn: cn=config
changetype: modify
replace: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/openldap/certs/your_key

dn: cn=config 
changetype: modify
replace: olcTLSCertificateFile 
olcTLSCertificateFile: /etc/openldap/certs/your_certificate

and the I ran the command 

ldapmodify -Y EXTERNAL -H ldapi:/// -f your_file.ldif

make sure that there an acl that makes the root eligible to make change with authenticating with SASL bind.

To make sure that changes have been done, run this command 

ldapsearch -Y EXTERNAL -H ldapi:/// -b cn=config | grep olcTLS

I had the same problem. Certificates were stored in the /opt/local/cert.

You must add this directory to the list of the resolved files in /etc/apparmor.d/local/usr.sbin.slapd:

/opt/local/cert/ r,
/opt/local/cert/* r,

Related

Running `sudo apt purge python` leads to total system crash [duplicate]
Check power consumption of individual hardware components
Why am I able to SSH a remote machine even with the wrong keys?
How to create an bootable .iso file from Ubuntu Live USB?
Is there an equivalent of Gnome Tweak Tool for XFCE?
20.04 Desktop for pi missing from rpi imager and ubuntu for pi downloads
Install Ubuntu using USB on hp 14-dk0xxx win10
Why am I not able to upgrade my system?
does adding a rule to iptables mean it takes effect immediately?
Ubuntu 18.04 Pairing Apple Magic Keyboard 1, says 'paired' but no input from keyboard
Ubuntu focal fossa python3 error - Does this error happen to everyone?
I want to build games on unity. Installed on a virtual box , is it possible to do so? [closed]