[CentOS] Re: openldap on Centos 5.1 with TLS
David Hláčik
david at hlacik.eu
Tue Apr 1 22:58:56 UTC 2008
thanks to you all guys! I have already ldap working for a half year, but i
did not needed tls as everything was a local-host only.
and my problem of course was not there but in ldap.conf (needed to set path
to CA cert)
Regards,
DAvid
On Wed, Apr 2, 2008 at 12:35 AM, Randall Svancara <rsvancara at wsu.edu> wrote:
> My advice, from a novice user stand point is to get everything working
> without TLS first. Make sure your systems can authenticate and
> everything is functioning. If your environment is not secure, then
> build a test environment (resources pending).
>
> Once you have done this, then work on TLS.
>
> In my ldap.conf file, I have an entry like this:
>
> -
> Randall Svancara
> Systems Administrator
> 509-335-7093
>
>
> On Tue, 2008-04-01 at 23:01 +0200, David Hláčik wrote:
> > Hi, sorry for the stupid question,
> >
> > but however i am following all howtos and tutorials it is not working
> >
> > 1) i have created CA certificate - /etc/pki/tls/misc/CA -newca
> > 2) i have generated a new request - /etc/pki/tls/misc/CA -newreq
> > 3) i have signed certificate /etc/pki/tls/misc/CA -signreq
> >
> > SO i have CA in /etc/pki/CA
> > i have newkey.pem
> > i have newcert.pem
> > i have also cealrkey.pem (without passphrase)
> >
> > $ openssl rsa < newkey.pem > clearkey.pem
> >
> > What to do next?? What to put in slapd.conf in order to make it work??
> > What to put in ldap.conf in order to communicate
> >
> > Really thanks in advance!!
> >
> > David
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20080402/ca0baae7/attachment.html>
More information about the CentOS
mailing list