Benjamin Watine wrote: > Hi > > I'm using heartbeat and drbd for openLDAP, and I would like to use TLS > on it. So I have to create cretificate and key files. But I would like > to have the same certificate on both node that run openLDAP. > > Is there is a known way to do that ? Can I put certificate in drbd > volume and share it accross the 2 openLDAP servers ? > I think the problem is the same for apache-ssl, maybe there a good known > solution. > > Regards > > Benjamin > _______________________________________________ > Linux-HA mailing list > [email protected] > http://lists.linux-ha.org/mailman/listinfo/linux-ha > See also: http://linux-ha.org/ReportingProblems
if this is an active passive cluster, then drbd will work just fine. i assume that you are talking about the tls server cert/key pair for the open ldap server. you can (and should) use the same cert/key pair when failing over as i assume you want the same setup to follow the resource group (eg IP address, openldap etc. etc.) can i ask why you are clustering open ldap servers? it's architecture was designed similar to dns in that you can have multiple servers (through syncrepl http://www.openldap.org/doc/admin22/syncrepl.html ) servicing queries.... hope this helps. _Terry _______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
