Sergey, Mike's recipe would do the trick. If you try that, also look into the nsslapd-listenhost and nsslapd-securelistenhost config variables (in directory server docs). These will allow you to arrange for each directory server instance to only listen on a single interface. I believe the default is to listen on all interfaces. -- George Mike Jackson wrote: > Sergey Ivanov wrote: >> Hi George, >> I want to have the same LDAP directory for both interfaces, but with >> different SSL certificates. > > Probably the fastest and easiest way to do it: > > 1. Setup directory server to only listen to interface1 (hostname1) > 2. Install SSL cert for hostname1 > 3. Setup directory server to only listen to interface2 (hostname2) > 4. Install SSL cert for hostname2 > 5. Setup multimaster replication between the two directory servers > 6. Populate data > > > > Mike >
