Mailinglist Archive: opensuse (1445 mails)

< Previous Next >
Re: [opensuse] NFS security [Was: SAMBA.]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 2012-03-17 10:30, lynn wrote:


Maybe you missed that the CN of the CA certificate must be the same as the
fqdn of your server. There is a howto here:
http://digiplan.eu.org/ldap-samba-howto-v4.html

Yes, I did miss that. Obviously, if that is necessary and yast knows that
I'm setting up LDAP, that field should be already filled.

Ok, trying again.

No, I can't delete the root certificate to create it again correctly:

RuntimeException:-1:Deleting the CA is not allowed. The CA must be expired
or never have signed a certificate.

But that clent certificate I revoked and deleted...

Ok, I create another certificate, try again with LDAP creation and... same
error, CA certificate file does not exist. Do I need a client certificate
too? I don't want to create one and then not being able to delete it.


As I said, not that easy.


No, reading a ldap-samba documentation made for version 4 is not adequate.
I'm supposed to be setting NFS with the same user IDs on several computers
(trial, not for real).

- --
Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 "Celadon" at Telcontar)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org/

iEYEARECAAYFAk9km9MACgkQIvFNjefEBxrWVACfbdMu0BfeMFHK0z7YFOQPaYku
IAEAoMiI0BPYlSOxJR7dI66nzjaJhGW2
=Tnhc
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups