[Samba] samba, ldap, tls and certificates

Gerald (Jerry) Carter jerry at samba.org
Wed Nov 10 14:57:08 GMT 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Pierre Gambarotto wrote:
| Hello, a litlle question from a newcomer on this list :
|
| I've deployed samba 3.0.x together with opendlap.
|
| In the process of improving the security, I used :
|
| ldap ssl = start tls
|
| in the smb.conf
|
| How can I specify to samba where to find the CA certificate ?
|
| On my samba server (Debian), samba "magically" finds the
| /etc/ldap/ldap.conf
| and read the configuration.
|
| But the targeted platform is Solaris.
| Any hint how to configure samba to  use a specific file
| to reads its tls configuration ?

The start_tls op and hence the CA cert is used by the
OpenLDAP client libs.  So this is really an OpenLDAP
question.  The configuration for these libs is the same
on solaris and linux.  Just depends on what configure
options you used when compiling openldap on solaris.






cheers, jerry
- ---------------------------------------------------------------------
Alleviating the pain of Windows(tm)      ------- http://www.samba.org
GnuPG Key                ----- http://www.plainjoe.org/gpg_public.asc
"If we're adding to the noise, turn off this song"--Switchfoot (2003)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFBkixEIR7qMdg1EfYRAkRqAJwIyJ2wc9u+KDLxkhb1kaNWKypblwCg2gpn
NrmjuQ9iEP/lX06Nulzrb4o=
=nN4z
-----END PGP SIGNATURE-----


More information about the samba mailing list