Hello
On Sat, Jul 28, 2012 at 6:07 PM, fosiul alam wrote:
> Hi
> I think i am very close to fix the issue
> Please have a look to the bellow commands
> I can do this from SErver or client ..
> this result i get
>
>
> root@home ~]# ldapsearch -x -ZZ -D "cn=Directory manager" -w -h
> ldap-2.
Hi
I think i am very close to fix the issue
Please have a look to the bellow commands
I can do this from SErver or client ..
this result i get
root@home ~]# ldapsearch -x -ZZ -D "cn=Directory manager" -w -h
ldap-2.fosiul.lan -b "dc=fosiul,dc=lan"
# extended LDIF
#
# LDAPv3
# base with scop
Does this user have uid=falam in its DN?
Tls works if that what you are asking.
28-07-2012 14:13, "fosiul alam" napisał(a):
> Hi Thanks
>
>
> no i think its fine ..
> I was trying with ldap-2 only
> but when i use faqdn name its work
> llike bellow
> ldapsearch -x -ZZ -D "c
Hi Thanks
no i think its fine ..
I was trying with ldap-2 only
but when i use faqdn name its work
llike bellow
ldapsearch -x -ZZ -D "cn=Directory manager" -w password -h
ldap-2.fosiul.lan -b "dc=fosiul,dc=lan"
Which is returning all result ( if i try from server)
Hie
On Sat, Jul 28, 2012 at 5:15 PM, fosiul alam wrote:
> Hi
> thanks I understand i will have to start from scratch for certificate
> .. but few explanation i need
>
> My ldapserver host name is : ldap-2.fosiul.lan
> and I just cn="Directory Manager"
>
>
Try below.
# certutil -S -n "directory-
Hi
thanks I understand i will have to start from scratch for certificate
.. but few explanation i need
My ldapserver host name is : ldap-2.fosiul.lan
and I just cn="Directory Manager"
so according to those info.. what shall i put in ,
dc=directory ???
and
cn=directory.example.com" ???
My server
On gmail i have option replay next to every email. If you are using email
client look in docs for your client.
Your error mean that CN (common name) field of certificate is wrong. It
should be FQDN of 389. You need to make new server cert.
Good Luck!
2012/7/28 fosiul alam
> Hi
> I am not getti
Hie
On Sat, Jul 28, 2012 at 4:54 PM, fosiul alam wrote:
> Hi
> I am not getting reply by email, so i cant click on reply...
> how will i get reply by email ??
>
> @
>
> i think i have done something wrong to create certs
> I have used bellow script to create all the certificate :
> https://gith
Hi
I am not getting reply by email, so i cant click on reply...
how will i get reply by email ??
@
i think i have done something wrong to create certs
I have used bellow script to create all the certificate :
https://github.com/richm/scripts/blob/master/setupssl2.sh
now when i do this ,i get be
To make system aware of users in 389 you need to configure other files:
/etc/ldap.conf (el5 systems) or /etc/nss_ldap.conf (el6 systems) +
/etc/nsswitch.conf + PAM modules (/etc/pam.d/system-auth + install pam_ldap
module). On RHEL/Fedora/Centos/SL you can do this easy way using
authconfig, authcon
On Sat, Jul 28, 2012 at 4:25 PM, fosiul alam wrote:
> Hi
> Dont know how to reply on same thread.
>
Just click on reply & leave the subject of mail un-touched
>
> but thank for quick reply.
>
> its case sensitive. so I created the cert file
> and i put that one into client , and i configured
Hi
Dont know how to reply on same thread.
but thank for quick reply.
its case sensitive. so I created the cert file
and i put that one into client , and i configured as documentated
/etc/openldap/ldap.conf
URI ldap://ldap-2.fosiul.lan/
BASE dc=fosiul,dc=lan
TLS_CACERTDIR /etc/openldap/cacerts/
Hello
On Sat, Jul 28, 2012 at 3:44 PM, fosiul alam wrote:
> Hi
> Thanks for reply.
> but there is a problem ..
> is there is the example
>
> certutil -d . -L
>
> Certificate Nickname Trust
> Attributes
>
> SSL,S/MIME,JAR/XPI
>
> CA certificate
I am not sure about case sensivity in names soo just to be sure: your CA is
named "CA certificate" and you used name "CA Certtificate"
28-07-2012 12:15, "fosiul alam" napisał(a):
> Hi
> Thanks for reply.
> but there is a problem ..
> is there is the example
>
> certutil -d . -L
>
> Certificate
Hi
Thanks for reply.
but there is a problem ..
is there is the example
certutil -d . -L
Certificate Nickname Trust
Attributes
SSL,S/MIME,JAR/XPI
CA certificate CTu,u,u
server-cert
Well back in centos/redhat/fedora directory server this could be done like
this:
First you should check what certificates names you have in certutil
database. In slapd directory type:
certutil -d . -L
this should show you all certificates in database (server certificates
aswell). Usualy CA certs
HI i have installed ssl certificate from bellow script
https://github.com/richm/scripts/blob/master/setupssl2.sh
it went fine.
but I dont understand, how will i create Certificate file for the clients.
according to documentation :
http://directory.fedoraproject.org/wiki/Howto:SSL#Configure_LDAP_
17 matches
Mail list logo
