Hello Peter,
Peter Gietz wrote:
Hi Jan,
your problem seems to be that you use two different naming spaces in
your configurartion.
In the ca-DN you are using the classical X.520/521 naming scheme:
c=xxx,o=yyy,ou=zzz,cn=aaa
in Your OpenLDAP configuration you are using DC-Style naming scheme
(RFC 2247): dc=xxx,dc=yyy,dc/ou=zzz,uid=aaa
Now OpenCA wants to store the certificate according to the first
naming schema and misses an entry o=blaundblub.com, c=DE in OpenLDAP
So you either have to change OpenCA or OpenLDAP config.
Hope this helps.
... in fact it did. Thank you for your help. The LDAP works very well now.
But theres are two Problems left. Using WinXP and for example Outlook Express
I can request user information from the LDAP. But if I do so usinf the address
book search I always find two entrys per user but only the second one contains
the certificate. For the first entry found there is no certificate present. So
I thought there must be a problem in the LDAP tree, but if I have a look into
it using gq I cannot see any problem. No doublettes at all. So I wonder what
reason this problem can have. Any idea ?
The second problem concerns Thunderbird 1.0.6. Using this client an finding users in the LDAP directory works very well. But when I try to encrypt an email for one of my users, Firebird fails complaining about an not existant certificate even if there is one in the directory for sure.
Is that a know behaviour or does Thunderbird lack of this functionality in the current version ? Or do I do something wrong ?
Thx in advance
Jan Roesner
[EMAIL PROTECTED]
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server.
Download it for free - -and be entered to win a 42" plasma tv or your very
own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
