<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
On 06/03/2011 01:38 PM, solarflow99 wrote:
<blockquote
cite="mid:BANLkTinmoq2XuVGz5rh97p5FB6M=mb+TpA@mail.gmail.com"
type="cite">For self signed certs, as I understand it, the 389
supplier that has the CA must create a server cert for the windows
host? How can this cert be exported/imported since windows
doesn't use pk12util? Has anyone set this up, and can say the
steps on windows 2008? I see there are many options for
installing IIS and Microsoft CA.<br>
</blockquote>
That's the easiest way to generate an SSL server cert for MS AD -
Install MS CA as an Enterprise Root CA - it will automatically issue
the AD server cert.<br>
<br>
Otherwise, look here
<a class="moz-txt-link-freetext" href="http://directory.fedoraproject.org/wiki/Howto:WindowsSync">http://directory.fedoraproject.org/wiki/Howto:WindowsSync</a> - you can
use mmc with the Certificates snap-in to import/export certs and
pkcs12 files. <br>
<blockquote
cite="mid:BANLkTinmoq2XuVGz5rh97p5FB6M=mb+TpA@mail.gmail.com"
type="cite">
<br>
Thanks, <br>
<br>
<pre wrap="">
<fieldset class="mimeAttachmentHeader"></fieldset>
--
389 users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a>
<a class="moz-txt-link-freetext" href="https://admin.fedoraproject.org/mailman/listinfo/389-users">https://admin.fedoraproject.org/mailman/listinfo/389-users</a></pre>
</blockquote>
<br>
</body>
</html>