On Fri, Jun 03, 2005 at 02:35:52PM +0200, Paul van der Vlis wrote: > -------- > ldap_servers: ldaps://firewall.domain.nl/ > ldap_auth_method: fastbind > ldap_tls_cacert_file: /path/to/rootcert.pem > ldap_filter: cn=%u,o=wlg > -------- > > The rootcert.pem is the root-certificate of the Novell server. > > A problem is: there are 2 Novell servers what are together the > e-directory, can we use 2 root-certificates?
you can, but the point of a root server is most of the time to have only one CA which then signs the certificates for the servers. Unless the certificates of your novell servers are self-signed. --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html