[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Looking for docs

On Sat, 21 Oct 2000, Kurt D. Zeilenga wrote:

> At 04:39 PM 10/20/00 +0200, Krajcsovits Gyorgy wrote:
> >ps2: a sample slapd configuration file and a few instructions on how to
> >set up the solaris client would be much appreciated.
> Here's a sample slapd.conf(5) file for slapd built
> --with-cyrus-sasl and --with-tls.

Thanks, the server can now use its own certificate. I created one
with CA.pl from the OpenSSL package.

Now I'm trying to set up a client certificate for the Solaris client
and then set up SASL auth. over it :)

BTW, the funny thing is that the Solaris 2.8 program which sets up ldap
(ldapclient) has no options that concern TLS. But when I used it
(that was when I didn't try TLS/SASL), it generated some config files
in /var/ldap and one of them specified that it was using no TLS
encoding. Does that mean that it automatically uses TLS when available ?
If so, where does it get its certificate from ? Can TLS work like an ssh
client which generates a temporary RSA key for each connection ?

bye, krajo