[Date Prev][Date Next] [Chronological] [Thread] [Top]

Adding aliases in SSL/TLS certificate (Was: ldapsearch TLS error)

To: openldap-software@OpenLDAP.org
Subject: Adding aliases in SSL/TLS certificate (Was: ldapsearch TLS error)
From: Turbo Fredriksson <turbo@bayour.com>
Date: 19 Apr 2002 08:27:49 +0200
In-reply-to: <NMEFLNHODBAOPDKNNJALMEDACLAA.hyc@highlandsun.com>
Organization: LDAP/Kerberos expert wannabe
User-agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7

>>>>> "Howard" == Howard Chu <hyc@highlandsun.com> writes:

    Howard> The  hostname specified  by the  ldap client  must exactly
    Howard> match the  hostname in  the server's certificate.  You can
    Howard> add aliases (with  wildcards) in a cert for  a server that
    Howard> is multi-homed or other reasons, but one of the names must
    Howard> match the name that the client used.

How exactly is this done? Is it possible to say

        Common Name (eg, YOUR name) []:egeria.bayour.com, somename.otherdomain, localhost

when creating the certificate?

http://www.bayour.com/LDAPv3-HOWTO.html#3.1.4.Creating SSL certificate|outline

Follow-Ups:
- RE: Adding aliases in SSL/TLS certificate (Was: ldapsearch TLS error)
  - From: "Howard Chu" <hyc@highlandsun.com>

References:
- RE: ldapsearch TLS error
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: RE: Some queries regarding Schema, Triggering Notification etc.
Next by Date: RE: can I use a kerberos ticket with ldapsearch (and ldap libraries)
Index(es):
- Chronological
- Thread