expert alert wrote:
Hi I am planning to deploy all my ldap server by puppet. so I am wondering, Can i use Same Server Certificate and CA certificate (Directory server) for all my server ??? if yes, then under which directory shall i place those certificate ??
Certificates typically have the hostname embedded in the subject so it is specific to that host. The exception is wildcard certs (*.example.com). So unless you have a wildcard cert, which I'm not really recommending, you'll need to get separate certs for each of your servers.
I'm a cli guy, so I don't know how you'd do this in console, but the certs and keys go into the NSS database in /etc/dirsrv/slapd-YOUR-INSTANCE
rob -- 389 users mailing list 389-users@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/389-users
