I have replication working over ssl using simple authentication, however I would like to have this working using certificate based authentication. According to this doc http://www.redhat.com/docs/manuals/dir-server/ag/7.1/ssl.html#1087158 under the section marked setting up certificate based authentication, it is necessary to map the certificate's distinguished name to a distinguished name known by your directory. This makes sense, as you must be able to tell the server your connecting to how much access you have to the destination directory. This corresponds to the error that I get when attempting to initiate replication over a certificate based ssl replication link "LDAP error: Invalid credentials. Error Code: 49" I believe this will work when I'm able to map the certs dn to a dn in the directory. Does anyone know how to do this, or can you point me to some documentation? Thanks again for your help. Aaron www.preferredcare.org "An Outstanding Member Experience," Preferred Care HMO Plans -- J. D. Power and Associates Confidentiality Notice: The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information. If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited. If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.
