[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS & Slurpd & SelfSigned certs



On Wed, Apr 02, 2003 at 12:21:42PM +0800, David Shirley wrote:
> When slurpd talks to the slave it throws:
> "TLS certificate verification: Error, self signed certificate"

What works for me is to create my own Certificate Authority and sign my
ldap server certs/keys with that CA cert/key.

Then, I tell my ldap servers about my CA cert:

TLSCACertificateFile    /etc/openldap/CA.example.com.crt
TLSCertificateFile      /etc/openldap/host.example.com.crt
TLSCertificateKeyFile   /etc/openldap/host.example.com.key

Luca

-- 
Luca Filipozzi, ECE Dept. IT Manager, University of British Columbia
gpgkey 5A827A2D - A149 97BD 188C 7F29 779E  09C1 3573 32C4 5A82 7A2D