[Date Prev][Date Next] [Chronological] [Thread] [Top]

slapd working on localhost and real interface: What about certificates ?

To: Openldap list <openldap-software@OpenLDAP.org>
Subject: slapd working on localhost and *real* interface: What about certificates ?
From: Harry Rüter <harry_rueter@gmx.de>
Date: Wed, 01 Jun 2005 20:13:53 +0200
User-agent: Mozilla Thunderbird 1.0.2 (Windows/20050317)

Hi everybody,

i'm trying to find out how to manage with certificates
if slapd is running on localhost AND a real IP
(example 192.168.1.1: server.somewhere.net)

The commandline for slapd would be :

slapd -d 0 -u ldap "-h ldap://server.somewhere.net:389/
ldap://localhost:389";


So, if i want to use TLS i have to have a certificate.

Easy to configure for server.somewhere.net,
would be something like that :

TLSCACertificateFile  /etc/ldapcert/ldapCA.pem
TLSCertificateFile    /etc/ldapcert/server.somewhere.net.crt.pem
TLSCertificateKeyFile /etc/ldapcert/server.somewhere.net.key.pem


How do i get the certificates configured for localhost too ?
Is it possible to configure it this way ? :

TLSCACertificateFile  /etc/ldapcert/ldapCA.pem
TLSCertificateFile    /etc/ldapcert/server.somewhere.net.crt.pem
TLSCertificateKeyFile /etc/ldapcert/server.somewhere.net.key.pem
TLSCertificateFile    /etc/ldapcert/localhost.crt.pem
TLSCertificateKeyFile /etc/ldapcert/localhost.key.pem


Thanks in advance,

Harry

Follow-Ups:
- Re: slapd working on localhost and *real* interface: What about certificates ?
  - From: Paul Kölle <pkoelle@gmail.com>

Prev by Date: Re: SASL and mail attribute help
Next by Date: RedHat Directory vs OpenLDAP
Index(es):
- Chronological
- Thread

slapd working on localhost and *real* interface: What about certificates ?

slapd working on localhost and real interface: What about certificates ?