Hi Joachim, > In an OpenCA setup, the LDAP server is solely there for the end users, > to be able to access the certificates in an address book, or to get > the CRL. The actual RA server and the node don't use the LDAP content > for their functionality, their data is kept in the database; they > `only' update the LDAP server for usage by external systems. > > Is this understanding correct?
yes, LDAP is push-only for CRLs and Certs. > PS: Still waiting for an idea for my problems with the batch approval, > I would appreciate any tip. I have written a local modification for OpenCA that provides this functionality. However, it is customized to my environment and may or may not work for you. If you like I can post the file to the ML, but you will have to integrate it yourself to your OpenCA installation. With a bit of Perl knowledge that should be quite simple, I think. > PPS: I have a bunch of errors, problems, and idiosyncrasies that I had > to solve during installation and setup of 0.9.3-rc1. Where should I > post them? Here, or on openca-devel? Depends on the problem, either the Users or Devel ML may be appropriate. You might also consider the bug tracker on SF. cheers Martin ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
