Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual page 384
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR:
Table of Contents
Advertisement
Automated Enrollment
Authentication Instance ID. Accept the default instance name, or enter a new name.
If you chose to use a different name, be sure to edit this name in the enrollment forms.
dnpattern. Specifies a string representing a subject name pattern to formulate from the
directory attributes and entry DN. See "DNs in Certificate System" on page 756.
ldap.ldapconn.host. Specifies the fully-qualified DNS host name of the authentication
directory.
ldap.ldapconn.port. Specifies the TCP/IP port on which the authentication directory
listens to requests from CS.
ldap.ldapconn.secureConn. Specifies the type—SSL or non-SSL—of the port on
which the authentication directory listens to requests from CS. Select if this is an SSL
port, deselect if this is a non-SSL port.
ldap.ldapconn.version. Specifies the LDAP protocol version.
version 2. If your authentication directory is based on Red Hat Directory Server 1.x,
choose
choose
ldap.ldapauth.bindDN. Specifies the user entry to bind as when adding entries to the
LDAP directory. This user must have permission to create entries in the directory.
password. Specifies the password associated with the DN specified by the
ldap.ldapauthbindDN
the password in the single sign-on password cache and uses it for subsequent start ups.
ldap.ldapauth.clientCertNickname. Specifies the nickname name of the certificate to
be used for SSL client authentication to the authentication directory in order to remove
PINs. Make sure that the certificate is valid and has been signed by a CA that is trusted
in the authentication directory's certificate database, and that the authentication
directory's
a DN in the directory. (This is needed for PIN removal only.)
ldap.ldapauth.authtype. Specifies the authentication type—basic authentication or
SSL client authentication—required in order to remove PINs from the authentication
directory.
❍
❍
384
Red Hat Certificate System Administrator's Guide • September 2005
.
specifies LDAP version 3. For Directory Server versions 3.x and later,
2
3
(default).
3
parameter. when you save your changes, the server stores
certmap.conf
specifies basic authentication. If you choose this option, be sure to
BasicAuth
enter the correct values for
the server uses the DN from the
directory (default).
specifies SSL client authentication. If you choose this option,
SslClientAuth
be sure to set the value of the
and the value of the
ldap.ldapauth.clientCertNickname
nickname of the certificate to be used for SSL client authentication.
file has been configured to correctly map the certificate to
ldap.ldapauth.bindDN
ldap.ldapauth.bindDN
ldap.ldapconn.secureConn
specifies LDAP
2
and
parameters;
password
attribute to bind to the
parameter to
true
parameter to the
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR and is the answer not in the manual?