Hi Fausto,
That is the data exchange part...the ca downloads the certs,etc to the
ra and ra imports the certs,etc to it's database and ldap server.
The update happens when the ra does the import. Chapter 7 of the openca
guide explains the ldap part and chapter 9 explains the data exchange.
You can use a floppy which is the default or use a file which requires
some tweaking of the config files.
When you do the import to the ra, the screen will show the status
of the various operations(ca cert,etc) and you will see the ldap
update at that time(or any failures due to bad dn's,etc).
Robert
-----Original Message-----
From: [EMAIL PROTECTED] on behalf of Saporito Fausto
Sent: Thu 1/20/2005 5:44 AM
To: OpenCA
Cc:
Subject: RE: [Openca-Users] problem generating a CA operator
Hi Robert,
i enabled the ldap support and ldap update on my config.xml
I have all the stuff on only one machine for test purpose.
So what do you exactly mean with "import from ca to the ra"?
thanks,
Fausto
Il giorno gio, 20-01-2005 alle 04:19 -0600, Tiller, Robert ha scritto:
Hi Fausto,
It is best to follow the docs on this but the config.xml file
has a line for update ldap that must be set along with some other
values. Your ldap server must be running with the proper schema
and when you import from the ca to the ra, the ldap update should happen at
that time on your ra box.
Robert
-----Original Message-----
From: [EMAIL PROTECTED] on behalf of Saporito
Fausto
Sent: Thu 1/20/2005 4:08 AM
To: OpenCA
Cc:
Subject: RE: [Openca-Users] problem generating a CA operator
Hi Robert,
thanks for your info.
Yes, the field in the config.xml was empty.
Now I filled it with a email address and I generated again all the files
with the configure command.
The problem is fixed, now.
Do you have any hint about the LDAP sync?
thanks a lot,
Fausto
Il giorno gio, 20-01-2005 alle 03:50 -0600, Tiller, Robert ha scritto:
Did you edit the config.xml file and run the config script before
starting? There is a line for the mail account that must be
specified.
Robert
-----Original Message-----
From: [EMAIL PROTECTED] on behalf of Saporito
Fausto
Sent: Thu 1/20/2005 3:27 AM
To: [email protected]
Cc:
Subject: [Openca-Users] problem generating a CA operator
Hello,
I have a problem during the Phase II of CA init.
When I want to setup a CA operator cert I have an error message when I'm
trying to issue a certificate:
Error 6728 : You must specify at minimum a mail account for the CA
(SERVICE_MAIL_ACCOUNT)!
I specified a mail account when I created the cert for the CA... so I cannot
imagine what could be the problem.
Also, how can I publish the certificate on LDAP? I just created in my LDAP
tree the entry for o=atosorigin,c=IT
Now, do I have to create manually the entry for CA itself, or is this
automatically done by the tool?
thanks in advance,
Fausto
-------------------------------------------------------
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
<http://www.intelliview.com/go/osdn_nl>
< http://www.intelliview.com/go/osdn_nl
<http://www.intelliview.com/go/osdn_nl> >
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
<https://lists.sourceforge.net/lists/listinfo/openca-users>
< https://lists.sourceforge.net/lists/listinfo/openca-users
<https://lists.sourceforge.net/lists/listinfo/openca-users> >
-------------------------------------------------------
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
<http://www.intelliview.com/go/osdn_nl>
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
<https://lists.sourceforge.net/lists/listinfo/openca-users>
-------------------------------------------------------
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
