[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems using OpenLDAP 2.1 client libraries to connect to OpenLDAP 2.0 server

To: openldap-software@OpenLDAP.org
Subject: Re: Problems using OpenLDAP 2.1 client libraries to connect to OpenLDAP 2.0 server
From: Mitrana Cristian <cmitrana@xnet.ro>
Date: Mon, 24 Mar 2003 08:53:58 -0200
Content-disposition: inline
In-reply-to: <OFA25B925A.05CBDB4F-ONC1256CF2.007BB9CE@day.com>
References: <OFA25B925A.05CBDB4F-ONC1256CF2.007BB9CE@day.com>
User-agent: Mutt/1.5.3i

* marc.bigler@day.com <marc.bigler@day.com> [23-03-03 20:31]:
 
> 
> >See http://www.openldap.org/faq/data/cache/185.html for the requirements
> >of using TLS/SSL in the 2.1 version, as you have noticed the behaviour
> >of the library has slightly changed in this regard.
> 
> Many thanks, that was exactly my problem and I could solve it reading this
> FAQ, I didn't know OpenLDAP 2.1.x requires the CA certificate.
> 
> Now another question I generated a new certitificate using the FAQ but
> unfortunately it only does a 365 days cert, I would be interested in
> genrating a 3650 (10 years) cert, so I added -days 3650 to the openssl
> command but then when I run "CA.sh -sign" it only sees 1 year. Am I missing
> something ?
> 
> Regards
> 

See the openssl.cnf file that is used by the CA.sh script,
look for "default_days" and try to change it. But this is more
a Openssl question.

mitu

References:
- Re: Problems using OpenLDAP 2.1 client libraries to connect to OpenLDAP 2.0 server
  - From: marc.bigler@day.com

Prev by Date: Re: Ldap with kerberos
Next by Date: Re: Ldap with kerberos
Index(es):
- Chronological
- Thread