Stefan Kania wrote: > Syntax error? Open your file with vi and do a "set: list" and you will = see additional blanks and tabstops. >=20 >=20 > Am 13.12.23 um 14:28 schrieb Jean-Luc Chandezon: >>> >>> You are missing "changetype: modify" >>> >>> this is how it should look >>> ------------- >>> dn: cn=3Dconfig >>> changetype: modify >>> add: olcTLSCertificateFile >>> olcTLSCertificateFile: /opt/symas/etc/openldap/example-net-cert.pem >>> - >>> add: olcTLSCertificateKeyFile >>> olcTLSCertificateKeyFile: /opt/symas/etc/openldap/example-net-key.pem >>> - >>> add: olcTLSCACertificateFile >>> olcTLSCACertificateFile: /opt/symas/etc/openldap/cacert.pem >>> >>> ------------- >>> Stefan >>> >> >> Thank you Stefan! >> Sorry for the mistake due to last changes. >> >> Our ldf file content is: >> >> dn: cn=3Dconfig >> changetype: modify >> add: olcTLSCACertificateFile >> olcTLSCACertificateFile: /etc/ssl/certs/LEXP_Infra_CA1.pem >> - >> add: olcTLSCertificateKeyFile >> olcTLSCertificateKeyFile: /etc/ssl/private/annuaire.lexp.fr.key >> - >> add: olcTLSCertificateFile >> olcTLSCertificateFile: /etc/ssl/certs/annuaire.lexp.fr.pem >> >> >> with the request: >> ldapmodify -Y EXTERNAL -H ldapi:/// -f /root/01-SSL.ldif >> =C2=A0 result: >> modifying entry "cn=3Dconfig" >> ldap_modify: Other (e.g., implementation specific) error (80) >> >> Any idea? >> >> Please find log content bellow >> >> 023-12-13T14:26:31.500282+01:00 bea-chicago slapd[63531]: #011#011one = value, length 33 >> 2023-12-13T14:26:31.500380+01:00 bea-chicago slapd[63531]: #011add: ol= cTLSCertificateKeyFile >> 2023-12-13T14:26:31.500452+01:00 bea-chicago slapd[63531]: #011#011one= value, length 37 As always - set a higher debug level and examine the debug output. Not th= e syslog output. syslog is for recording routine operation, not for isolating problems. Use the debug output for t= roubleshooting. --=20 -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/