Re: PIN file for unattended SSL restarts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Graham Leggett wrote:

Mike Jackson wrote:


[root@vectra-3 alias]# pwd
/opt/fedora-ds/alias

[root@vectra-3 alias]# cat slapd-netauth-pin.txt
Internal (Software) Token:secret
Substitute "netauth" for your instance name. Substitute "secret" for your security database's password.
Thanks for the info - it seemed to work for the LDAP server but not for the admin server for some reason.
Is it possible to update the wiki entry at http://directory.fedora.redhat.com/wiki/Howto:SSL#Starting_the_Server_with_SSL_enabled with this info? It contains the line "If you do not have PIN file, it will prompt you for the password you used to create the server cert.", but doesn't explain what a PIN file is as you've explained above. 

Edit /opt/fedora-ds/admin-serv/config/nss.conf. Look for the line:

NSSPassPhraseDialog  builtin

Change it to the form:

NSSPassPhraseDialog file:/path/to/password/file

e.g.

NSSPassPhraseDialog file:/opt/fedora-ds/admin-serv/config/admin.txt

The format is slightly different from the DS, it is:

internal:secret

Substitute "secret" for the admin server security database password.

rob

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

--
Fedora-directory-users mailing list
Fedora-directory-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux