[Date Prev][Date Next] [Chronological] [Thread] [Top]

Expiration of root CA

To: openldap-technical@openldap.org
Subject: Expiration of root CA
From: Philippe Bloix <pbloix@gmail.com>
Date: Thu, 11 Feb 2010 12:18:37 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type; bh=35H+X7tUxJNhBjg81n5kvUUtbp9406O3Q63IBRFrqZw=; b=Jl8SxzDY2EeFzsYEgK2HF4Qojd+lIuW2bJjCXOTMB2QDPS1IBHMa3khoq1EF/iuGTo mPTFmIGpJoDOuu1QFJU+k9drOWd1XH7TS0w5O2CuiyzNp7Y0YVPMx3JMbRc1eQVFUjBC 8z7k57/X7EQXwLCZ1B6NtdHe9YZZC3o3e/PuU=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=WwVG7n5MDu4sPd0gTvK5wH7Ise/in5ot1WDpBoAemGN7y6Nx1J4liKOw9n3qC8occW QtN7Ft1VvwUocXT2MuS2d/n5CDVCuPLoA/XlyNlaQWL19aiTmX06PXoT6BzidyYegk5F 0aS+KGLY10VGmfOFPT9pZ2IfwhQnGvE5VfsB0=

Hi,

My root CA will expire soon. What is the best method to avoid break between ldap server and ldap client communication?

If i create a new root CA, then i will have to copy this new root CA on each ldap client (several hundred). In this case, is it possible to switch from the old root CA to the new root CA without a break between server and client? How?

Regards

Philippe

Follow-Ups:
- Re: Expiration of root CA
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Re: Where is DB_CONFIG file?
Next by Date: Re: Too many open files?
Index(es):
- Chronological
- Thread