Hi Isabella,
you could follow this documentation:
http://www.port389.org/docs/389ds/howto/howto-ssl.html#replacing-a-server...
Please, ignore all instructions regarding Fedora 1.0.4.
Basically, delete old cert, import new one and replace the certificate nick in
nsSSLPersonalitySSL attribute of "dn: cn=RSA,cn=encryption,cn=config" entry.
Regards,
German.
PS: Rergarding certutil usage:
https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/9....
----- Original Message -----
From: "Isabella Ghiurea"
<Isabella.Ghiurea(a)nrc-cnrc.gc.ca>
To: 389-users(a)lists.fedoraproject.org
Sent: Thursday, October 9, 2014 10:12:34 PM
Subject: [389-users] how to install a server cert the DS is down
HI lIst,
need to know how to replace an existing server cert , I have the new one
signed by CA and need to know how to installed , I just copy in
/etc/pki/tls/certs ( 389admin UI not working)
Is this sufficient?
Thank you
--
389 users mailing list
389-users(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users