[Date Prev][Date Next] [Chronological] [Thread] [Top]

crl add?

To: openldap-software@OpenLDAP.org
Subject: crl add?
From: cellecial@21cn.com
Date: Tue, 24 Aug 1999 10:20:34 +0800 (CST)

Hi,
I want to add certificateRevocationList to OpenLDAP-1.2.4(schemacheck on).
In rfc2256, I find objectclass cRLDistributionPoint which
can match our needs. But in /usr/local/etc/openldap/slapd.oc.conf,
there is no this objectClass.So I write myslapd.oc.conf(as below)
and include it in slapd.conf.

myslapd.oc.conf:

objectclass cRLDistributionPoint
        requires
                objectclass,
                cn
        allows
                certificateRevocationList;binary,
		authorityRevocationList;binary,
		deltaRevocationList;binary

Then I write e8:
dn:cn=tt,o=TC,c=CN
cn:tt
certificateRevocationList;binary:/home/openssl/cur.old.crl
objectclass:cRLDistributionPoint

And use "ldapadd -D "cn=root,c=CN" -w secret -p 1000 -b -f e8" to 
add the entry.But when I use Netscape Addressbook to see the entry,
it shows:
			tt 
Name                		  tt 
certificaterevocationlist;binary  0?70??0  *?H?¡Â  
Object Class   			  cRLDistributionPoint 

You see,it didn't show the content of CRL.
What's wrong? How to add a crl?

Hope your suggestion,thanks in advance.           

----------------------------------------------
»¶ÓÊ¹ÓÃ 21CN µç×ÓÓÊ¼þÏµÍ³http://www.21cn.com
Thank you for using 21CN Email system

Follow-Ups:
- Re: crl add?
  - From: Michael Ströder <michael.stroeder@inka.de>

Prev by Date: Re: Retrieval by DN
Next by Date: ldapadd/ldapmodify problem
Index(es):
- Chronological
- Thread