Hi Peter/Chris,
for a projekt I need a OpenCA Setup that exports certificates to 2 LDAP servers. Anyone already did such a thing ?
instead of exporting to 2 LDAP servers you could get OpenCA to export to 1
and then use LDAP replication (slurpd) to replicate the 2 LDAP servers.
Just a thought.
Chris...
Yes that is how we do it in production with an own slurpd implementation. But there is a new replication mechanism in OpenLDAP (LDAPsynch) which will be the more stable replication mechanism in the future. When redesigning the LDAP module in OpenCA it wouldn't be too difficult to implement export to more than one server either. For now slurpd seems to be the best option.
Cheers,
Peter
Hmm, I wanted to avoid making one "master", but if you guys tell me that this is the best.....
Oliver
-- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
