TLS_CACERT option in nslcd.conf

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Murukesh Mohanan <murukesh [at] cse.iitb.ac.in>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: TLS_CACERT option in nslcd.conf
Date: Sat, 07 Jun 2014 18:19:16 +0530

Hi,

I'm trying to automate the install of Ubuntu in my lab. We use LDAP withSTARTTLS, and we use nslcd to connect to it for authentication (thanksfor it, by the way!). In debconf, the questions for nslcd includeenabling starttls and requiring a certificate from the server, but doesnot have one for specifying the CA certificate. I don't think nslcd usesvalues from /etc/ldap/ldap.conf or /etc/ldap.conf, or the LDAPenvironment variables. And I don't think it uses a default value (I haveadded my CA cert to the usual location in Ubuntu:/etc/ssl/certs/ca-certificates.crt). Perhaps you could add a debconfsetting? It's a feature request but hopefully a light one.


--
Murukesh Mohanan
MTech1 CSE, Sysad RA
62, Hostel 5

--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

TLS_CACERT option in nslcd.conf, Murukesh Mohanan

Re: TLS_CACERT option in nslcd.conf, Arthur de Jong

Prev by Date: Re: Filtering with pam_authz_search
Next by Date: Re: nslcd: error reading from client: Success
Previous by thread: Re: Filtering with pam_authz_search
Next by thread: Re: TLS_CACERT option in nslcd.conf