Quanah Gibson-Mount wrote:--On Tuesday, December 18, 2018 5:53 PM +0000 Howard Chu <hyc@symas.com> wrote:---------------- servers/slapd/bconfig.c -----------------------olcTLSCertificateKey -- ??? (Private SYNTAX OID) Shouldn't the SYNTAX be 1.3.6.1.4.1.1466.115.121.1.8? And use certificateExactMatch?No, a key is not a certificate. Keys are stored in PKCS#8 encoding.So what's the matching rule for it? ;)I suppose it'll have to be octetStringMatch.
Ok, done: <https://github.com/quanah/openldap-scratch/commit/57026b565a092de45faf3f6bf9ec118fb2080341> That should cover ITS#8286. --Quanah -- Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: <http://www.symas.com>