[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: userCertificate - value #0 invalid per syntax [repost]



On Fri, 17 Dec 2004, Kurt D. Zeilenga wrote:

> At 07:54 AM 12/17/2004, kallen@muppetlab.net wrote:
> >i take my id_dsa.pub key and encode it:
> >  ldap_add: Invalid syntax (21)
> >    additional info: userCertificate;binary: value #0 invalid per syntax
> 
> As value is not a DER-encoded X.509 user certificate, this
> error should be expected.  See RFC 2256 and RFC 2252.

thanks for the response Kurt. the "ldap public key" README 
(http://ldappubkey.gcu-squad.org/README), which is where i got my 
instructions, doesn't mention x509 at all. not that i'm questioning the 
RFCs or the openldap implementation.

i'm gonna scour the x509 manpage and attempt some experiments. but if 
anyone can advise me on how to convert an ssh DSA key to DER/x509 form, 
i'd be very appreciative.

k

-- 
"More than any other time in history, mankind faces a cross-roads.
One path leads to despair and utter hopelessness. The other, to
total extinction. Let us pray we have the wisdom to choose correctly."

-- Woody Allen