[Date Prev][Date Next]
Re: userCertificate - value #0 invalid per syntax [repost]
On Fri, 17 Dec 2004, Kurt D. Zeilenga wrote:
> At 07:54 AM 12/17/2004, firstname.lastname@example.org wrote:
> >i take my id_dsa.pub key and encode it:
> > ldap_add: Invalid syntax (21)
> > additional info: userCertificate;binary: value #0 invalid per syntax
> As value is not a DER-encoded X.509 user certificate, this
> error should be expected. See RFC 2256 and RFC 2252.
thanks for the response Kurt. the "ldap public key" README
(http://ldappubkey.gcu-squad.org/README), which is where i got my
instructions, doesn't mention x509 at all. not that i'm questioning the
RFCs or the openldap implementation.
i'm gonna scour the x509 manpage and attempt some experiments. but if
anyone can advise me on how to convert an ssh DSA key to DER/x509 form,
i'd be very appreciative.
"More than any other time in history, mankind faces a cross-roads.
One path leads to despair and utter hopelessness. The other, to
total extinction. Let us pray we have the wisdom to choose correctly."
-- Woody Allen