>I am trying to use mod_auth_ldap with apache2, and I am having >trouble figuring out how to generate a trusted Certificate >Authority certificate. I tried using the Netscape certificate >database file as the apache docs suggest, but I'm still >getting a complaint from LDAP that "LDAP: ssl connections not >supported".
Not sure but this sounds like you haven't enabled SSL, not that it cant negotiate the session. >Can I use openssl to make a DER_FILE or a BASE64_FILE? Has >anyone here had experience getting this to work? Here's how I've generated server cert requests (PKCS #10 which works fine with Netscape): openssl req -config openssl.cnf -new -out hostname.csr openssl rsa -in privkey.pem -out hostname.key Then you'll need to tell point apache to the right certs: SSLCertificateFile /server.crt SSLCertificateKeyFile /server.key SLCACertificateFile /CA.crt If you want to generate the certs yourself rather then submit the CSRs to a CA: openssl x509 -in hostname.csr -out hostname.crt -req -signkey hostname.key -days 365 ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager [EMAIL PROTECTED]
