[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: simple question

Aleksandar Karalejić wrote:
Hi Howard,

Is there any way discard sending private key (or keeping it in the file) on
the file system.

The private key is not sent anywhere.

Can you explain why is private key needed for certificate
based authentication?

Read up on how public-key cryptography works. That is not anything specific to OpenLDAP.

The private key is required to prove that you are the owner of the certificate being used.

  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/