[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Slurpd over SSL

To: Mark <mark@rusautogaz.ru>
Subject: Re: Slurpd over SSL
From: Quanah Gibson-Mount <quanah@stanford.edu>
Date: Thu, 20 Nov 2003 09:15:38 -0800
Cc: Estevam Viragh <estevamviragh@yahoo.com.br>, openldap-software@OpenLDAP.org
Content-disposition: inline
In-reply-to: <3FBC8FC8.8020000@rusautogaz.ru>
References: <20031120032347.62432.qmail@web21502.mail.yahoo.com> <451006483.1069284171@cadabra-dsl.stanford.edu> <3FBC8FC8.8020000@rusautogaz.ru>

--On Thursday, November 20, 2003 12:56 PM +0300 Mark <mark@rusautogaz.ru> wrote:

# need to be changed - specific to server
# this is specific to HOSTNAME.stanford.edu
TLSCertificateFile      /etc/ldap/HOSTNAME.cert
TLSCertificateKeyFile   /etc/ldap/HOSTNAME.key
TLSCACertificateFile    /etc/ldap/comodo-full.pem

Is HOSTNAME.cert HOSTNAME.key comodo-full.pem in MASTER's slapd.conf
differs from same files on
REPLICA slapd.conf file?

HOSTNAME is just a variable placeholder for our installation script. When it is on a system, it will be something like ldap0.cert and ldap0.key, specific to the name of the host. Each host has its own cert. So, the cert on the master and replica's does differ. The comodo-full.pem is exactly the same on each system, and is simply the authority chain for our cert provider.

--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/TSS/Computing Systems
ITSS/TSS/Infrastructure Operations
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

References:
- Slurpd over SSL
  - From: Estevam Viragh <estevamviragh@yahoo.com.br>
- Re: Slurpd over SSL
  - From: Quanah Gibson-Mount <quanah@stanford.edu>
- Re: Slurpd over SSL
  - From: Mark <mark@rusautogaz.ru>

Prev by Date: Re: Changing passwords via Open LDAP OS X 10.3 Server
Next by Date: Re: [openldap 2.1.12 + BerkeleyDb 4.1.24] db_checkpoint pb
Index(es):
- Chronological
- Thread