[389-users] ssl replication
Rich Megginson
rmeggins at redhat.com
Thu May 19 19:35:46 UTC 2011
On 05/19/2011 01:26 PM, solarflow99 wrote:
>
> You can use certutil on the master to make a cert for the slave,
> using the above command on the master. Then, use pk12util to
> export the slave cert/key, then take that pk12 file to the slave
> and use pk12util to import it (and use certutil to import the CA
> cert).
>
>
>
>
> Thanks for this, it worked. I had to disable: check hostname against
> name in cerfificate for outbound SSL connections,
That's not good. That's your MITM protection.
> but its actually working now.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20110519/b7e46009/attachment.html>
More information about the 389-users
mailing list