[Openca-Users] Fwd: Problem to export certificates to Active Directory

Thu, 26 Jan 2006 01:56:06 -0800

Hi all,

My last message was still incomplete, I hope this will be OK.

I have installed and configured Openca and it works fine. My organization use Active Directory and we want to export certificates there.
I thought that Openca could work with, but when I try to export it doesn't work.

Any ideas?  Can Openca export certificates to Active Directory? Is there a misconfiguration? Do I need to configure Active Directory?

Below you can find  the error messages and the configuration files.

When I try to export certificates I get:

Exporting valid certificates to LDAP ...

Certificate 2 FAILED (error 49: LDAP-bind failed: 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893

In stderr.log file:
 
DBD::mysql::st execute failed: Unknown system variable 'NAMES' at /usr/lib/perl5/site_perl/5.8.3/OpenCA/DBI.pm line 2544.
 
 
My ldap.xml file:
 
<suffix>
      <dn>o=openca, c=ES</dn>
    </suffix>
    <host>172.x.x.x</host>
    <port>389</port>
 
<..........>
<chain>/usr/local/openca/var/crypto/chain</chain>
    <login>administrator</login>
    <passwd>xxxxxxxxxxxx</passwd>
<...........>
 
My ldap.conf file:
 
LDAP "yes"
LDAP_CRL_Issuer ""
LDAP_CA_DN      ""

My node.conf file:

 LDAP "yes"
updateLDAPautomatic "yes"

Thanks

Jose

 

Reply via email to