[Fedora-directory-users] password sync documentation
Rich Megginson
rmeggins at redhat.com
Thu Jul 17 14:39:26 UTC 2008
omight wrote:
> Hi,
> I'm trying to follow the documentation to setup synchronisation to
> windows active directory.
> >From the documentation:
> http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Windows_Sync-Configuring_Windows_Sync.html
> [quote]
> 2. Create a new cert8.db and key.db using certutil.exe on the Password
> Sync machine.
> certutil.exe -d . -N
> ln -s slapd-serverID-cert8.db cert8.db
> ln -s slapd-serverID-key3.db key3.db
> [/quote]
>
> If I execute that in a new directory:
> # certutil.exe -d . -N
> # ln -s slapd-rhds-cert8.db cert8.db
> ln: creating symbolic link `cert8.db' to `slapd-rhds-cert8.db': File exists
>
> I don't follow why the ln -s should be executed? Why not start with part 3:
> On the Directory Server, export the server certificate using pk12util.
> pk12util -d . -o servercert.pfx -n Server-Cert
>
Yes. It looks like that section of the docs has not been updated for
RHDS 8.0/Fedora DS 1.1. The key/cert db do not have a prefix anymore,
so the ln -s step should be omitted.
> Because SSL is already configured on this linux machine, so I guess I
> can use the server-cert from that cert8.db?
> Can someone clarify/confirm this? Thanks!
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3258 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20080717/fe852b22/attachment.bin>
More information about the 389-users
mailing list