omight wrote: > Hi, > I'm trying to follow the documentation to setup synchronisation to > windows active directory. > >From the documentation: > http://www.redhat.com/docs/manuals/dir-server/ag/8.0/Windows_Sync-Configuring_Windows_Sync.html > [quote] > 2. Create a new cert8.db and key.db using certutil.exe on the Password > Sync machine. > certutil.exe -d . -N > ln -s slapd-serverID-cert8.db cert8.db > ln -s slapd-serverID-key3.db key3.db > [/quote] > > If I execute that in a new directory: > # certutil.exe -d . -N > # ln -s slapd-rhds-cert8.db cert8.db > ln: creating symbolic link `cert8.db' to `slapd-rhds-cert8.db': File exists > > I don't follow why the ln -s should be executed? Why not start with part 3: > On the Directory Server, export the server certificate using pk12util. > pk12util -d . -o servercert.pfx -n Server-Cert > Yes. It looks like that section of the docs has not been updated for RHDS 8.0/Fedora DS 1.1. The key/cert db do not have a prefix anymore, so the ln -s step should be omitted. > Because SSL is already configured on this linux machine, so I guess I > can use the server-cert from that cert8.db? > Can someone clarify/confirm this? Thanks! > > -- > Fedora-directory-users mailing list > Fedora-directory-users at redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3258 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.fedoraproject.org/pipermail/389-users/attachments/20080717/fe852b22/attachment.bin
