> > On other oddity about this is there are two boxes in play -- one's hostname > > is 'animal.clarku.edu' and the other is 'zoot.clarku.edu'; they are > > round-robin'd behind the hostname 'ds.clarku.edu.' However the cert I have > > installed on each box is for ds.clarku.edu. > Not sure how this works with openldap - the usual way to handle this is to > use subjectAltName so that the server's cert has animal.clarku.edu > zoot.clarku.edu and ds.clarku.edu That's how you do it. For Mozilla clients, you'll want to make sure to list the hostname in the altname list too.
This message is private and confidential. If you have received it in error, please notify the sender and remove it from your system.
