Hi Max, > Great... so we might say.. it works with Novell eDirectory too :-D > > Yes, we can say this. I found one more addition to this. With eDirectory you can create a TrustedRoot Container and place all trusted root certs (used as trusted root storage for a couple of applications) into this container. In order to retrieve the CA certificate from an eDirectory trusted root object located in a trusted root conatiner you need to use the following directives:
============================================================================= ca_entry_attribute = "nDSPKITrustedRootCertificate ca_entry_dn = "cn=RootCA, cn=TrustedRoot, cn=Security" ca_url = ldap://cn=OCSPD, ou=OCSPD, ou=services, o=ema:[EMAIL PROTECTED]:389 ============================================================================= 1) Is there a way to define a Base DN / search context for the LDAP objects ? What would you need this for ? For downloading CA certificate(s) and CRL(s) you already have the DN and the ATTRIBUTE. I do not understand your question... > >You do not have to specify a full DN but. You can use the CN instead So basically I am just to lazy to specify the full DN for each object if they are placed in the same container. Best Regards Klaus ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
