Saslauthd with ldaps

Andreas Hasenack ahasenack at terra.com.br
Fri Jun 3 11:53:41 EDT 2005


On Fri, Jun 03, 2005 at 02:35:52PM +0200, Paul van der Vlis wrote:
> --------
> ldap_servers: ldaps://firewall.domain.nl/
> ldap_auth_method: fastbind
> ldap_tls_cacert_file: /path/to/rootcert.pem
> ldap_filter: cn=%u,o=wlg
> --------
> 
> The rootcert.pem is the root-certificate of the Novell server.
> 
> A problem is: there are 2 Novell servers what are together the
> e-directory, can we use 2 root-certificates?

you can, but the point of a root server is most of the time to have only
one CA which then signs the certificates for the servers. Unless the
certificates of your novell servers are self-signed.

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




More information about the Info-cyrus mailing list