Hi ListUsers, I know, it's one of the "hot topics" but since I'm experimenting now for days with a modified DN and don't get any further, I'd like to ask for help. Here's what I'd like to do :
Issued certificates should have a DN structure like that: DN=serialNumber=4711,sn=23232323,cn=Duffy Duck,o=ACME,c=US or: DN=serialNumber=4711,uid=23232323,cn=Duffy Duck,o=ACME,c=US or anything else but uid or sn, but something I can store some additional info directly in the DN. Trying to understand the documentation (what is most significant attribute ... most left, most right .... does serialNumber count) I figured out the section in ldap.xml that is used to create the schema path or the ldap entry. But no matter what I do, no matter what configuration changes I make, while trying to import the newly issued certificates with a DN like that LDAP fails and says *LDAP*: *error* code 64 - *naming attribute* 'cn' is not present in entry But I have an SN ... surName, in fact I have two of em, first the sn itself, secondly the sn is derived from the cn .... so I do not understand this errormessage or misinterprete. Can someone help me, tell me, if what I desired to to may be totally stupid, or if there is any solution. I would be even lucky, If I could add my special DATA to the CN via '+' .... modifying the CSR by hand, I did that, but I dont find any possibility to do so automatically .... means, users enter a special number in CSR mask, and this number is automatically concattenated to CN via '+' Any ideas? Thx in advance Jeremy Rosen [EMAIL PROTECTED] ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
