My advice, from a novice user stand point is to get everything working without TLS first. Make sure your systems can authenticate and everything is functioning. If your environment is not secure, then build a test environment (resources pending).
Once you have done this, then work on TLS. In my ldap.conf file, I have an entry like this: - Randall Svancara Systems Administrator 509-335-7093 On Tue, 2008-04-01 at 23:01 +0200, David Hláčik wrote: > Hi, sorry for the stupid question, > > but however i am following all howtos and tutorials it is not working > > 1) i have created CA certificate - /etc/pki/tls/misc/CA -newca > 2) i have generated a new request - /etc/pki/tls/misc/CA -newreq > 3) i have signed certificate /etc/pki/tls/misc/CA -signreq > > SO i have CA in /etc/pki/CA > i have newkey.pem > i have newcert.pem > i have also cealrkey.pem (without passphrase) > > $ openssl rsa < newkey.pem > clearkey.pem > > What to do next?? What to put in slapd.conf in order to make it work?? > What to put in ldap.conf in order to communicate > > Really thanks in advance!! > > David > >
