Dears, in the moment I have no time to test something about with openca (perhaps next week again). But if you use openldap (slapd) with certificates, I beleave, you must use more schema than the default. Look at this from LDAP-Implementation-HOWTO: %<----------------------------------------------------------------------------- 9.1. LDAP Server configuration
The LDAP server used here is OpenLDAP 2.0.x. Your LDAP server must support objectclasses that allows attributes to store certificates. In particular you need to store in the LDAP server the Certification Authority certificate, the Certificate Revocation List, the Authority Revocation List and end users certificates. The certificationAuthority objectclass implements the authorityRevocationList, certificateRevocationList and cACertificate attributes. The inetOrgPerson objectclass supports the usercertificate (binary) attribute. You can also use the mix-in objectclass strongAuthenticationUser to add certificates to non inetOrgPerson entries. You can include required schemas to OpenLDAP including the following schemas into your slapd.conf file. include /usr/local/etc/openldap/schema/core.schema include /usr/local/etc/openldap/schema/cosine.schema include /usr/local/etc/openldap/schema/inetorgperson.schema %<----------------------------------------------------------------------------------------------- Greetings Harald Am Dienstag, 29. Oktober 2002 22:28 schrieb Al-Amood, Bahaaldin: > hello all > is it possible to generate a root certificate with the following structure > cn=somename,dc=myorg,dc=edu > > where dc is domainComponent > if it is possible how can I do it with openca as which config files I need > to change > > thanks in advance > > Bahaa Al-amood > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Welcome to geek heaven. > http://thinkgeek.com/sf > _______________________________________________ > Openca-Users mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/openca-users -- Dr. Harald Wallus Results GmbH Am Listholze 78, D-30177 Hannover Tel: +49(0)511 90 95 1-23 Fax: +49(0)511 90 95 = 1-90 Email: [EMAIL PROTECTED] Internet: http://www.results-hannover.de ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
