second question: how do i set an ldap-crl-distribution-point through configuration? so that there isnt an uri pointing to an http crldp but to an ldap crldp in config.xml i can just set the protocoll but not the kind of distribution point i would like to have - so it will points auto matically to the right place ldap://host/dn
i guess - just manual mode at the moment? ;o) so i will set it manually at the config files
but should than be mentioned somewhere, where and how at its best...
You have to change all extension files. See OPENCADIR/etc/openssl/extfiles/*.ext. There you can change the CDP.
In the last time there were a lot of questions how to modify the CDP and there were some problems with our default CDP. What do you think about adding an item @CRLDistributionPoints@ to config.xml? If we have the CDP directly in our central configuration then it is really easy and error proof to set the correct one. I think this is better and more direct than the crl_httpd_protocol etc..
Greetings Michael
P.S. should we still support ns*RevocationUrl or is it time to remove it from our default configuration? If we still need than we would need an option @[EMAIL PROTECTED]
--
-------------------------------------------------------------------
Michael Bell Email: [EMAIL PROTECTED]
ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482
(Computing Centre) Fax: +49 (0)30-2093 2704
Humboldt-University of Berlin
Unter den Linden 6
10099 Berlin Email (private): [EMAIL PROTECTED]
Germany http://www.openca.org
------------------------------------------------------- This SF.Net email is sponsored by: INetU Attention Web Developers & Consultants: Become An INetU Hosting Partner. Refer Dedicated Servers. We Manage Them. You Get 10% Monthly Commission! INetU Dedicated Managed Hosting http://www.inetu.net/partner/index.php _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
