-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2012-03-17 10:30, lynn wrote:
Maybe you missed that the CN of the CA certificate must be the same as the fqdn of your server. There is a howto here: http://digiplan.eu.org/ldap-samba-howto-v4.html
Yes, I did miss that. Obviously, if that is necessary and yast knows that I'm setting up LDAP, that field should be already filled. Ok, trying again. No, I can't delete the root certificate to create it again correctly: RuntimeException:-1:Deleting the CA is not allowed. The CA must be expired or never have signed a certificate. But that clent certificate I revoked and deleted... Ok, I create another certificate, try again with LDAP creation and... same error, CA certificate file does not exist. Do I need a client certificate too? I don't want to create one and then not being able to delete it. As I said, not that easy. No, reading a ldap-samba documentation made for version 4 is not adequate. I'm supposed to be setting NFS with the same user IDs on several computers (trial, not for real). - -- Cheers / Saludos, Carlos E. R. (from 11.4 x86_64 "Celadon" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org/ iEYEARECAAYFAk9km9MACgkQIvFNjefEBxrWVACfbdMu0BfeMFHK0z7YFOQPaYku IAEAoMiI0BPYlSOxJR7dI66nzjaJhGW2 =Tnhc -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org