[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS and more CN's

Waldemar Brodkorb wrote:

is it possible to get the OpenLDAP server to
communicate with clients over TLS with more than
one FQDN? I tried two X.509 Certs in one file, but
slapd ignores the second one.

Perhaps with subjectAltName X509v3 extensions:

subjectAltName=DNS:<otrer_name>,DNS:*.<domain_name>  (openssl conf file)
This runs for us, but we have an FQDN and several others in a farm.

RFC 2830 may help.

-- ____________________________________________________ Ignacio Coupeau, Ph.D. e-mail: icoupeau@unav.es CTI, Director fax: 948 425619 University of Navarra voice: 948 425600 Pamplona, SPAIN http://www.unav.es/cti/