Hi Nicolas,
On 8/23/19 3:37 PM, Nicolas Kovacs wrote:
Le 23/08/2019 à 15:30, Nicolas Kovacs a écrit :
The method using the command-line (specified in the RHDS 10
Administration Guide in Chapter 9) doesn't work.
To add a little detail. When I follow section 9.3.5 in the RHDS
Administration Guide (Generating and Installing a Self-Signed
Certificate), I get the following error:
# certutil -S -x -d /etc/dirsrv/slapd-instance_name/ -z /tmp/noise.bin \
-n "server-cert" -s "CN=$HOSTNAME" -t "CT,C,C" -m $RANDOM --keyUsage \
digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The
certificate/key database is in an old, unsupported format.
I can't reproduce the problem. I verified the procedure [1] on RHEL 7.7
with RHDS 10.4, and it still works.
Just to be sure: is the name of your DS instance really "instance_name"?
"instance_name" in the RHDS docs as a placeholder (that's why it is italic).
Regards,
Marc
[1]
https://access.redhat.com/documentation/en-us/red_hat_directory_server/10/html/administration_guide/managing_the_nss_database_used_by_directory_server#generating_and_installing_a_self-signed_certificate
--
Marc Muehlfeld (Senior Technical Writer)
Customer Content Services
_______________________________________________________________________________
Red Hat GmbH, Werner-von-Siemens-Ring 14, 85630 Grasbrunn, Germany
http://www.de.redhat.com/, Registered seat: Grasbrunn,
Commercial register: Amtsgericht Muenchen, HRB 153243,
Managing Directors: Charles Cachera, Michael O'Neill,
Tom Savage, Eric Shander
_______________________________________________
389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
