> On 23 Nov 2023, at 09:19, Alexander Bokovoy via FreeIPA-users
> wrote:
>
> On Чцв, 23 ліс 2023, Francis Augusto Medeiros-Logeay wrote:
>>> No. This cannot be done -- a client cannot tell the LDAP (or KDC) server
>>> that it is a 'trusted one'. When authentication comes, it is all about
>>> u
On Чцв, 23 ліс 2023, KERVELLEC Joseph wrote:
Hello Alexander,
This is the RootCA certificate, i use :
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:[...]
Signature Algorithm: sha512WithRSAEncryption
Issuer: C = FR, ST = France, L = [...], O = [.
On Чцв, 23 ліс 2023, Francis Augusto Medeiros-Logeay wrote:
No. This cannot be done -- a client cannot tell the LDAP (or KDC) server
that it is a 'trusted one'. When authentication comes, it is all about
user login, not where that login is coming from.
Thanks Alexander.
I don’t think this will
Hello Alexander,
This is the RootCA certificate, i use :
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:[...]
Signature Algorithm: sha512WithRSAEncryption
Issuer: C = FR, ST = France, L = [...], O = [...], OU = [...], CN =
ROOT-CA, emailA