On Monday, 31 January 2005, jehan.procaccia wrote: > Krishnakumar B wrote: >
[...] > I didn't tried it (autofs with TLS) but I know that autofs reads ldap > configuration in /etc/openldap/ldap.conf on redhat config! not > /etc/ldap.conf , did you put a TLS_CACERT directive in > /etc/openldap/ldap.conf ? Here's what I have in /etc/openldap/ldap.conf: BASE dc=dre,dc=vanderbilt,dc=edu HOST ldap.dre.vanderbilt.edu TLS_CERT /usr/share/ssl/certs/valhalla.crt TLS_KEY /usr/share/ssl/certs/valhalla.pem TLS_CACERT /usr/share/ssl/certs/DRE-CA-CERT TLS_REQCERT demand And it works: [EMAIL PROTECTED] root]# ldapsearch -LLL -ZZ -x -s base -b "" "(objectClass=*)" + dn: structuralObjectClass: OpenLDAProotDSE namingContexts: dc=dre,dc=vanderbilt,dc=edu supportedControl: 2.16.840.1.113730.3.4.18 supportedControl: 2.16.840.1.113730.3.4.2 supportedControl: 1.3.6.1.4.1.4203.1.10.1 supportedControl: 1.2.840.113556.1.4.1413 supportedControl: 1.2.840.113556.1.4.1339 supportedControl: 1.2.840.113556.1.4.319 supportedControl: 1.2.826.0.1.334810.2.3 supportedExtension: 1.3.6.1.4.1.1466.20037 supportedExtension: 1.3.6.1.4.1.4203.1.11.1 supportedExtension: 1.3.6.1.4.1.4203.1.11.3 supportedFeatures: 1.3.6.1.4.1.4203.1.5.1 supportedFeatures: 1.3.6.1.4.1.4203.1.5.2 supportedFeatures: 1.3.6.1.4.1.4203.1.5.3 supportedFeatures: 1.3.6.1.4.1.4203.1.5.4 supportedFeatures: 1.3.6.1.4.1.4203.1.5.5 supportedLDAPVersion: 3 supportedSASLMechanisms: PLAIN supportedSASLMechanisms: LOGIN supportedSASLMechanisms: GSSAPI supportedSASLMechanisms: DIGEST-MD5 supportedSASLMechanisms: CRAM-MD5 subschemaSubentry: cn=Subschema [EMAIL PROTECTED] root]# -kitty. -- Krishnakumar B <kitty at dre dot vanderbilt dot edu> Institute for Software Integrated Systems, Dept. of EECS, Vanderbilt University _______________________________________________ autofs mailing list [email protected] http://linux.kernel.org/mailman/listinfo/autofs
