Re: OpenLDAP SSL/TLS How-To by D. Kent Soper

["Gavin Henry" <ghenry@suretecsystems.com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Lozano, Carlos A. said:
>
> Hello,
>
>> Is this still applicable with OpenLDAP versions 2.2.13/14?
>>
>> http://www.openldap.org/pub/ksoper/OpenLDAP_TLS_howto.html
>>
>> This is the last part of ldap I need to finish setting up. I have the
>> O'reilly book too, but it seems to skim past the fine details of TLS. I
>> have also read through the FAQ OpenLDAP TLS section.
>>
>> I think I need to really sit down and mess around a bit, but if this
>> guide
>> is a good base to start from, then I will go from there.
>
> Checked it with 2.2.11 here:
>
> Compile openldap with tls support --with-tls
> mkdir /var/myca
> cd /var/myca
> /usr/lib/ssl/misc/CA.sh -newca
> openssl req -new -nodes -keyout newreq.pem -out newreq.pem


What about the server name in the cert. My ldap one is
dc=suretecsystems,dc=com so what do I make the server name, as I read this
can cause issues.

- --
Kind Regards,

Gavin Henry.
Managing Director.

T +44 (0) 1224 587369
M +44 (0) 7930 323266
F +44 (0) 1224 742001
E ghenry@suretecsystems.com

Open Source. Open Solutions.

http://www.suretecsystems.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFA/h8VeWseh9tzvqgRAogXAJ9qMT1Rg6pxM2KMt0E5e0+bec0U3QCeOmlF
MR2+adpJsDrOlWW5BZQ2B6c=
=bwVb
-----END PGP SIGNATURE-----