[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: LDAP authentication with PAM

Previously Brian May wrote:
> How do I start the server with TLS? I tried:
> 
> # slapd -h  ldaps:///

That's essential, but you also have to tell slapd which keys to
use, and unfortunately that is not extremely well documented.
There is some documentation on the faq-o-matic on www.openldap.org
tot tells you which commands to put in slapd.conf, but it
does not explain how to generate the keys.

However since I ran into that same problem a while ago I wrote
a little script that creates a dummy certification authority
and a service key signed by that dummy CA that you can use here.
The script (makekeys) is attached. Please note you need to have
the openssl package installed for this.

Wichert.

-- 
   ________________________________________________________________
 / Generally uninteresting signature - ignore at your convenience  \
| wichert@cistron.nl                  http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |
Reply to: