xtdata-req--005fsubject--005fname--002ecn=)(&(!(cn=))(!(cn=' dn |
grep "cn=" | sed -e "s/dn: //" -e "/\#/d" > req_
Check that number of request and certificate entry to purge are equal:
grep -c cn= cert_
grep -c cn= req_
(I hope this will help)
Th
Hello all,
I have to clean up lot of useless certificate in dirsrv database.
Because of resubmit loop on Certmonger client, i have 99,9% of certificate in
dirsrv database that are useless and not obsolete (expiration in 2020) (it
represent ~85 000 certificates).
These useless certificates produ
--- Original Message -
> From: "Fraser Tweedale"
> To: "FreeIPA users list"
> Cc: "David Goudet"
> Sent: Monday, July 10, 2017 4:28:55 AM
> Subject: Re: [Freeipa-users] Modify default dirsrv/LDAP certificate (add SAN)
>
> On Fri, Jul
ri, Jul 07, 2017 at 10:38:25AM +0200, David Goudet via FreeIPA-users wrote:
> Hi,
>
> I am using FreeIPAv4, some of clients products does not support LDAP failover
> so i am configuring LDAP loadbalancer based on KeepAlived to do LDAP stream
> fail-over.
> I have two FreeIPA server (
Hi,
I am using FreeIPAv4, some of clients products does not support LDAP failover
so i am configuring LDAP loadbalancer based on KeepAlived to do LDAP stream
fail-over.
I have two FreeIPA server (ds01.xxx & ds02.xxx) and i added one new FreeIPA
service LDAP/ldapha.xxx which have two IPs (ds01 &