On 10/18/2013 02:37 PM, Christian Kratzer wrote:
Hi,
On Fri, 18 Oct 2013, lejeczek wrote:
snipp/
use following to dump the certificate:
openssl s_client -text -in CERT.pem
and no such things for s_clients in the toolkit version
as above,
I normally view a certificate with:
openssl
Hi,
On Mon, 21 Oct 2013, lejeczek wrote:
ok, above doesn't get me much more than what was in my command line but still
no! subjectAltNames,
I had a similar thought to what Quanah suggested but first, before I try
different ssl toolchain I shall assume it is me messing thing up.
I definitively
that was me, the way I tried to sing certificate were...
incorrect
apologies and great and many thanks to everybody
I can now ldapsearch on both slapd.domain.local and
slap.domain.external with -ZZZ, all good (only cannot
confirm if CN has to be repeated in subjectAltName as per
Olo's tip,
2013/10/21 Howard Chu h...@symas.com
lejeczek wrote:
that was me, the way I tried to sing certificate were...
incorrect
apologies and great and many thanks to everybody
I can now ldapsearch on both slapd.domain.local and
slap.domain.external with -ZZZ, all good (only cannot
confirm if
: Subject Alternative Name in TLS - does this work?
lejeczek wrote:
that was me, the way I tried to sing certificate were...
incorrect
apologies and great and many thanks to everybody
I can now ldapsearch on both slapd.domain.local and
slap.domain.external with -ZZZ, all good (only cannot
Am Fri, 18 Oct 2013 14:30:35 +0100
schrieb lejeczek pelj...@yahoo.co.uk:
On 10/18/2013 11:59 AM, Christian Kratzer wrote:
Hi,
On Fri, 18 Oct 2013, lejeczek wrote:
snipp/
hi Christian
my case is, well should be a lot more simpler, one box with
slapd.local.domain
...@openldap.org] On Behalf Of lejeczek
Sent: Thursday, October 17, 2013 8:50 AM
To: openldap-technical@openldap.org
Subject: Subject Alternative Name in TLS - does this work?
dear all
I'm trying to set a seeminglysimple setup having a box with openldap I want it
to use TLS on both internal and external
Hi,
On Thu, 17 Oct 2013, lejeczek wrote:
dear all
I'm trying to set a seeminglysimple setup
having a box with openldap I want it to use TLS on both internal and external
hostnames/IPs
openldap was set up earlier and was/is working
I generate TLS certificate with SAN
everything seems
On 10/18/2013 10:41 AM, Christian Kratzer wrote:
Hi,
On Thu, 17 Oct 2013, lejeczek wrote:
dear all
I'm trying to set a seeminglysimple setup
having a box with openldap I want it to use TLS on both
internal and external hostnames/IPs
openldap was set up earlier and was/is working
I
Hi,
On Fri, 18 Oct 2013, lejeczek wrote:
snipp/
hi Christian
my case is, well should be a lot more simpler, one box with
slapd.local.domain
slap.public.external
and this one host I would like to be able to search through on/via both
hostnames/IPs with TLS
so I issue myself and sign a
On Fri, Oct 18, 2013 at 11:25:59AM +0100, lejeczek wrote:
[...]
my case is, well should be a lot more simpler, one box with
slapd.local.domain
slap.public.external
and this one host I would like to be able to search through on/via
both hostnames/IPs with TLS
so I issue myself and sign a
Aleksander Dzierżanowski wrote:
On Fri, Oct 18, 2013 at 11:25:59AM +0100, lejeczek wrote:
[...]
my case is, well should be a lot more simpler, one box with
slapd.local.domain
slap.public.external
and this one host I would like to be able to search through on/via
both hostnames/IPs with TLS
W dniu 2013-10-18 14:23, Howard Chu napisał(a):
Aleksander Dzierżanowski wrote:
On Fri, Oct 18, 2013 at 11:25:59AM +0100, lejeczek wrote:
[...]
my case is, well should be a lot more simpler, one box with
slapd.local.domain
slap.public.external
and this one host I would like to be able to
On 10/18/2013 11:59 AM, Christian Kratzer wrote:
Hi,
On Fri, 18 Oct 2013, lejeczek wrote:
snipp/
hi Christian
my case is, well should be a lot more simpler, one box with
slapd.local.domain
slap.public.external
and this one host I would like to be able to search
through on/via both
Hi,
On Fri, 18 Oct 2013, lejeczek wrote:
snipp/
use following to dump the certificate:
openssl s_client -text -in CERT.pem
and no such things for s_clients in the toolkit version as above,
I normally view a certificate with:
openssl x509 -issuer -subject -enddate -noout -text -in
--On Friday, October 18, 2013 8:52 AM +0100 lejeczek pelj...@yahoo.co.uk
wrote:
slapd is redhat's openldap-servers-2.4.23-26.el6_3.2.x86_64, I hoped
since slapd does not say a bad word about TLS cert with SAN it's tool
would be fine too
Get a current release that is linked to OpenSSL, not
@openldap.org
Subject: Re: Subject Alternative Name in TLS - does this work?
--On Friday, October 18, 2013 8:52 AM +0100 lejeczek pelj...@yahoo.co.uk
wrote:
slapd is redhat's openldap-servers-2.4.23-26.el6_3.2.x86_64, I hoped
since slapd does not say a bad word about TLS cert with SAN it's tool
would
dear all
I'm trying to set a seeminglysimple setup
having a box with openldap I want it to use TLS on both
internal and external hostnames/IPs
openldap was set up earlier and was/is working
I generate TLS certificate with SAN
everything seems working fine
but
when I ldapsearch on external
Alternative Name in TLS - does this work?
dear all
I'm trying to set a seeminglysimple setup having a box with openldap I want it
to use TLS on both internal and external hostnames/IPs
openldap was set up earlier and was/is working I generate TLS certificate with
SAN everything seems working fine
It should work, but depends on the checks performed by the TLS+crypto
toolkit.
Using the CN to hold the hostname/IP is deprecated, and this field is now
ignored by some libraries if the SAN extension is present.
2013/10/17 lejeczek pelj...@yahoo.co.uk
dear all
I'm trying to set a
20 matches
Mail list logo