Hello Michael,
[EMAIL PROTECTED] schrieb am 23.06.04 17:26:48:
Gregor Bethlen wrote:
Hello List,
I have another question regarding LDAP: In ldap.xml I can configure how new nodes are created. I can configure, which attributes are filled in. My question is: Can I control, which values these attributes get? For example: I have my "beloved" ;-) Active Directory, and "top" says that every Node must have an objectCategory (I don't mean objectClass, this must be there, too).
For a CA node, this should be
"CN=Certification-Authority,CN=Schema,CN=Configuration,DC=<domaincredentials>".
If I create a node by hand, I can put the CACertificate in it without problem, but I don't know how I can create this node automatically. I always get errors. So I think, I have to fill this objectCategory-attribute with a value.
For those who are interested: AD2003 needs the following attributes: objectClass cn instanceType (setting to "4" seems to work) objectCategory (see above) cACertificate authorityRevocationList certificateRevocationsList
This is heavy. Would it help you if we introduce something like static attributes on a rdn base?
<static> <attribute> <name>instanceType</name> <value>4</value> </attribute> <attribute> <name>objectCategory</name> <value>CN=Certifi...</value> </attribute> </static>
I don't know a better way of handling this today. Perhaps you have a better idea.
Michael --
This is exactly what I thought of ;-) So I don't have a better idea, but I think this one is good. The only thing I can think of is that you could leave out the <static>-tag and make a choice like
"if there is no <value> in <attribute> choose "NULL" or anything normally would be pasted in (like E-Mail-address in emailAdress), otherwise paste content of <value>"
But if it's easier to generate an own <static>-section it would work, too.
Ok, then please file it as a RFE on sourceforge so that we can track it more easily.
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
