Good Morning, the Manager Entry must reside under the LDAP BaseDN
cn=Manager, O==MYLDAP, c=US try it. Robert Nightslave wrote: > Hi, > I configure it as in the INSTALL said... > Here are the raserver.conf > > ## LDAP Section: > ## ============= > ## > ## As this RA Server Manager has the need to interact with ldap server, > ## it is important ( for administrative porpouses ) you can have > ## privileged access to directory. > > ## LDAP Server Name > ##ldapserver ldap.rokstar.netruders.com > > ldapserver localhost > > ## LDAP Port Number ( defaults to 389 ) > ##ldapport 389 > > ldapport 389 > > ## LDAP Maximum number of records returned by a query > ldaplimit 100 > > ## Now the LDAP default base dn > basedn "o=MYLDAP, c=US" > > ## Let's define the privileged Account Allowed to Modify the LDAP > entries > ldaproot "cn=Manager, c=IT" > ldappwd "secret" > > ## Let's define some Directory Env > ## supposed to find there the bin/, sbin/ directory > ldapbasedir "/usr/local/ldap" > > ## Crypto Section > ## ============== > openssl "/usr/bin/openssl" > opensslEngine "" > sslconfig "/usr/local/RAServer/conf/openssl/openssl.cnf" > VerifyPath "/usr/local/bin/openca-verify" > SignPath "/usr/local/bin/openca-sign" > MakePath "/usr/bin/make" > > ## General Section > ## =============== > ServerDir "/usr/local/RAServer" > BaseDir "/usr/local/RAServer" > SheetsDir "sheets" > IncludeDir "sheets/inc" > TextDir "sheets/txt" > > PublicDir "/home/httpd/htdocs-public" > > DBmodule "DB" > RBAC "Off" > MaxReturnedItems 30 > > TempDir "/usr/local/RAServer/tmp" > > pendingrequestsheet "sheets/pending_reqs.html" > ViewRequestSheet "sheets/view_req.html" > ApproveRequestSheet "sheets/app_req.html" > > approvedrequestsheet "sheets/approved_reqs.html" > ViewapprovedSheet "sheets/view_app.html" > > archiviedrequestsheet "sheets/archivied_reqs.html" > ViewarchiviedSheet "sheets/view_arc.html" > > deletedrequestsheet "sheets/deleted_reqs.html" > Viewdeletedsheet "sheets/view_del.html" > > pendingcrrrequestsheet "sheets/pending_crr_reqs.html" > ViewCRRRequestSheet "sheets/view_crr_req.html" > > certsrequestsheet "sheets/certslist.html" > BaseCertsList "sheets/issued_certs.html" > BaseSearchList "sheets/search_list.html" > > ViewCertSheet "sheets/viewCert.html" > ValidCertSheet "sheets/viewValidCert.html" > > CRLBaseSheet "sheets/issued_crls.html" > viewCrlSheet "sheets/view_crl.html" > RevPendform "forms/revpend.form" > > addallcertssheet "sheets/add_all_certs.html" > > ViewSignatureSheet "sheets/viewSignature.html" > > GenRAServerDBSheet "sheets/genraserverdb.html" > > RAChoiceBaseSheet "sheets/ra_choice.html" > RA "City Municipality" "Help Desk 1" "Help Desk 2" > > RequestCertificateType "User Certificate" "Server Certificate" "CA > Certificate" > > ## Certificates and CRLs Section > ## ============================= > > CACertificate "/usr/local/RAServer/cacert.pem" > CACertsDir "/usr/local/RAServer" > CRLDir "/usr/local/RAServer/crl" > > ## Mail Section > ## ============ > ## > ## The RA Manager program needs to send an e-mail to each user when he > ## certificate has been successuffly published. Because of this you > ## have to configure the sendmail program to use the right server. > ## Watch out for mail attacs. Secure yourself. > > ## Do you want to send mail when certificate is published ? > warnuser yes > > ## Now let's define the command line for the sendmail with right options > mailcommand "/usr/lib/sendmail -n -t -di " > mailsendername "Registration Authority" > mailsenderaddress "[EMAIL PROTECTED]" > basemailfile "certsMail.txt" > > ## Archivier Section > ## ================= > ## The $dest and $orig will be replaced by the given values > ## in the In/Out section and in the ExportDev/ImportDev keywords. > ## > ## For UnpackArchive the $orig is taken from the ImportDev > ## and the $dest from the TmpCertsDir keyword. > ## > ## For CreateArchive the $dest is taken from the ExportDev > CreateArchive "/bin/tar cvfp $dest " > UnpackArchive "/bin/tar xvf $orig -C $dest" > TestArchive "/bin/tar tvf $dest" > > ## In/Out Section > ## ============== > ## > ## The used ExportDest and ImportOrig are files used to export and/or > ## import archive of Certification Requests and Issued Certificates > ## (it can be used a device as well such as /dev/fd0 on a Linux > > At Tuesday, 11 December 2001, you wrote: > > >Hi, > > > >could you send cgi-raserver/conf/raserver.conf too please? > > > >Michael > >-- > >------------------------------------------------------------------- > >Michael Bell Email (private): [EMAIL PROTECTED] > >Rechenzentrum - Datacenter Email: [EMAIL PROTECTED] > >Humboldt-University of Berlin Tel.: +49 (0)30-2093 2482 > >Unter den Linden 6 Fax: +49 (0)30-2093 2959 > >10099 Berlin > >Germany [OpenCA Core Developer] > > > >http://www.openca.org > > > >_______________________________________________ > >Openca-Users mailing list > >[EMAIL PROTECTED] > >https://lists.sourceforge.net/lists/listinfo/openca-users > > > > _______________________________________________ > Openca-Users mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/openca-users _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
