Differences

This shows you the differences between two versions of the page.

--- doc:appunti:linux:sa:ldap [2011/10/31 12:23] – [Autenticazione Kerberos e LDAP] niccolo
+++ doc:appunti:linux:sa:ldap [2011/10/31 14:38] (current) – [Configurazione del server] niccolo
@@ Line 118: / Line 118: @@
 # following command:
 #
-# openssl req -config /etc/ldap/tls/ldap.rigacci.org.cnf \
+# openssl req -config /etc/ldap/ssl/ldap.rigacci.org.cnf \
-#     -new -x509 -days 1095 -nodes \
+#     -new -x509 -days 1461 -nodes \
-#     -keyout /etc/ldap/tls/ldap.rigacci.org.pem \
+#     -keyout /etc/ldap/ssl/ldap.rigacci.org.pem \
-#     -out /etc/ldap/tls/ldap.rigacci.org.pem
+#     -out /etc/ldap/ssl/ldap.rigacci.org.pem
 #
 # The resulting file (unencrypted otherwise Slapd can't start
@@ Line 142: / Line 142: @@
 </file>
-Il certificato **''/etc/ldap/tls/ldap.rigacci.org.pem''** deve essere protetto con permessi **0400** e deve appartenere all'utente LDAP (**openldap:openldap** in Debian). Per utilizzarlo si aggiunge a ''/etc/ldap/slapd.conf'' le righe:
+Il certificato **''/etc/ldap/ssl/ldap.rigacci.org.pem''** deve essere protetto con permessi **0400** e deve appartenere all'utente LDAP (**openldap:openldap** in Debian). Per utilizzarlo si aggiunge a ''/etc/ldap/slapd.conf'' le righe:
 <file>
 # Allow the server to picks-up the default cypher.
 # TLSCipherSuite         HIGH:MEDIUM:+SSLv2
-TLSCertificateFile     /etc/ldap/tls/ldap.rigacci.org.pem
+TLSCertificateFile     /etc/ldap/ssl/ldap.rigacci.org.pem
-TLSCertificateKeyFile  /etc/ldap/tls/ldap.rigacci.org.pem
+TLSCertificateKeyFile  /etc/ldap/ssl/ldap.rigacci.org.pem
 </file>