Mikael Kermorgant wrote:
Hello, I've asked for a bunch of certificate lately, issuing certificate request with openssl for all of them. Unfortunately, I forgot that the procedure for installing a certificate in 389ds was to issue the certificate request with its own tools. Is there an easy way to import my private key in 389ds in order to use my new certificate ? Regards,
Sure. Use the openssl pkcs12 command to create a PKCS#12 file containing the private key and cert, then use the NSS tool pk12util to import it into your 389-ds NSS database.
# openssl pkcs12 -export -in cert.pem -inkey key.pem -out cert.p12 -name "Server-Cert"
# pk12util -i cert.p12 -d /etc/dirsrv/slapd-INSTANCE/ rob -- 389 users mailing list 389-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
