[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS and more CN's

To: Waldemar Brodkorb <wbx@luusa.org>
Subject: Re: TLS and more CN's
From: Ignacio Coupeau <icoupeau@unav.es>
Date: Mon, 12 Aug 2002 19:21:23 +0200
Cc: openldap-software@OpenLDAP.org
References: <20020812102232.GB22215@luusa.org>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.1b) Gecko/20020804

Waldemar Brodkorb wrote:

Hi,

is it possible to get the OpenLDAP server to
communicate with clients over TLS with more than
one FQDN? I tried two X.509 Certs in one file, but
slapd ignores the second one.

Perhaps with subjectAltName X509v3 extensions:

subjectAltName=DNS:<otrer_name>,DNS:*.<domain_name>  (openssl conf file)
This runs for us, but we have an FQDN and several others in a farm.

RFC 2830 may help.


--
____________________________________________________
Ignacio Coupeau, Ph.D.     e-mail: icoupeau@unav.es
CTI, Director              fax:    948 425619
University of Navarra      voice:  948 425600
Pamplona, SPAIN            http://www.unav.es/cti/

Follow-Ups:
- Re: TLS and more CN's
  - From: Simone Piccardi <simonepi@chl.it>

References:
- TLS and more CN's
  - From: Waldemar Brodkorb <wbx@luusa.org>

Prev by Date: Re: TLS and more CN's
Next by Date: Updateref Ignored, Part Duex: The Final Chapter
Index(es):
- Chronological
- Thread