Hi. why do you need to use mod_authz_ldap ? Ldap is just used here as a repositary of your certificate , crl and so one. Apache doesn't need to be linked to the LDAP unless you want people to authentify against the ldap server.
i answered to some of your question in the body of your text > Q1> > I decided not to install LDAP for now on my RA. So my question is what all > am i going to loose without RA?. just the repositary stuff (OpenCA is working on its own internal berkley database) basicly it dosn't need LDAP but for greater compatibility with some End Entity Client you'd better find a way to make it work. > Q2> > I know that I cannot store the certs and serch for certs on LDAP. But can I > still make use of RA server without much loss. Bascially I just want to know > if anyone out there are working with RA server without LDAP (not in > production environment ofcourse!). if you decided not to use LDAP in the newest version (0.9+) the ldap admin page feature won't work in the oldest version the link import to ldap features wont work neither > > Only reason for not installing LDAP is I have to install the module and then > LDAP and then Apache from source.....and now I already have Apache binary > installed with openssl and OpenCA configured and now i realzed that I need > to make these changes.. No you don't..... Ldap is just used here as a repositary of your certificate , crl and so one. Apache doesn't need to be linked to apache!!! just install LDAP as you want where you want and specify in the configuration the LDAP directive wich are : ./configure --with-ldap-host=your server \ --with-ldap-port=389 \ --with-ldap-root="cn=admin,dc=your server,c=FR" \ --with-ldap-root-pwd="secret" > Q3> > I saw the following lines in online.conf and some other confs. > > mailcommand "/usr/lib/sendmail -n -t " > > I am working on solaris. But when I checked it from command line I didnot > find sendmail in usr/lib/ directory. So where do i get sendmail from. Can I > download it from any site? http://www.sendmail.org http://www.postfix.org > > Q4> > Also in the online.conf I saw this lines > ImportDev "/dev/fd0" > ExportDev "/dev/fd0" > > Now I want to change these paths to a directory rather than floppy drives as > I donot have direct access to the server I am using. And i generally telnet > to the server and work. So on the CA server I used Exported ALL command and > stored all as tar file. > Can I place the tar file on the RA server and give the path to that > directory in the above config file? > > Can I then use the Import All command on the RA server (donot know if such > command exists) > > Q5> > And Will this make the online server move all the certs to where ever they > are supposed to be on the RA server? don't know... sorry i have always installed CA and RA on the same host so far. > > > Thanks, > Pavan Sura. Good luck in your installation @++ Ben Open Source Open Technologies ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
