Displaying 20 results from an estimated 61 matches for "certdir".
2000 Jul 17
0
SSL!
...own parameter "ssl"
Unknown parameter encountered: "ssl server cert"
Ignoring unknown parameter "ssl server cert"
Unknown parameter encountered: "ssl server key"
Ignoring unknown parameter "ssl server key"
Unknown parameter encountered: "ssl CA certDir"
Ignoring unknown parameter "ssl CA certDir"
Processing section "[home]"
Processing section "[tmp]"
Processing section "[public]"
Processing section "[cdrom]"
Loaded services file OK.
Press enter to see a dump of your service definitions...
2010 Aug 10
4
Certificat Outlook 2003
Hi,
next problem with outlook 2003
On the IMAP Server (dovecot.x86_64 1.0.7-7.el5) I created a certificate
with "mkcert_dovecot.sh". Some entries as be written to
"/etc/pki/dovecot/dovecot-openssl.cnf".
plaintext paswords are disables.
IMAP Serverport: 993
Server needs SSL
Now the outlook 2003 clients meens "the server uses a security
certificate, which could not be
2001 Mar 14
1
SAMBA SSL: Error error setting CA
...ple lately asking about this problem. I've already
offered the solution twice, and I believe Andrew has mentioned it too, but
we obviously keep getting new people on the list ;) So here's how to fix
it, once again:
Add the following line to the [global] section of your smb.conf:
ssl CA certDir = /usr/share/ssl/certs
That's it! The default is /usr/local/ssl/certs , which doesn't exist. I'm
re-posting this message for 2 reasons: 1) I like to help people with
problems I've nutted out; 2) I don't often get to help others out because
I'm not much of a seasoned Linu...
2003 Mar 28
2
Problem with Windows XP SP1 Client
...SWAT
# from 0.0.0.0 (0.0.0.0)
# Date: 2003/03/28 14:54:54
# Global parameters
[global]
client code page = 852
workgroup = EDIZIONI_METRO
netbios name = SUPPORT
server string = Support Server for IT
security = DOMAIN
encrypt passwords = Yes
update encrypted = Yes
password server = *
ssl CA certDir = /etc/ssl/certs
log file = /var/log/samba.%m
max log size = 50
domain admin group = Administrators
preferred master = No
dns proxy = No
wins server = 192.168.10.1
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind separator = +
winbind use default domain = Yes
[homes]
comment...
2004 Mar 24
1
Stopping new directory creation ?
...ossible ?
Got a really basic system - Slackware 8.0 and Samba 2.2.8a running purely as
a fileserver for Win2k clients.
Thanks
Mike
smb.conf is >
[global]
workgroup = Server
netbios name = OurGroup
netbios aliases = Test_Server
server string = Samba Server
encrypt passwords = Yes
ssl CA certDir = /etc/ssl/certs
log file = /var/log/samba.%m
max log size = 50
load printers = No
disable spoolss = Yes
show add printer wizard = No
dns proxy = No
wins server = 172.16.1.50
hosts allow = 172.16.15. 172.16.50. 172.16.63. 172.16.86. 172.16.158.
172.16.171. 172.16.172. 127.
veto files = /*....
2023 Apr 06
1
Fwd: ntlm_auth and freeradius
...crt
chmod 640 /etc/freeradius/3.0/certs/service.radius.*
chown freerad:freerad /etc/freeradius/3.0/certs/service.radius.*
```
- configure eap module to use peap per default
```
# /etc/freeradius/3.0/mods-available/eap
default_eap_type = peap
#private_key_password = whatever
private_key_file = ${certdir}/service.radius.key
certificate_file = ${certdir}/service.radius.crt
tls_min_version = "1.2"
cache: enable = yes
cache: name = ?<somename>.radius"
cache: persist_dir = "${logdir}/tlscache"
peap: copy_request_to_tunnel = yes
```
### 4.5 Configure Clients
- add cli...
2023 Apr 12
1
Fwd: ntlm_auth and freeradius
...ius.*
> chown freerad:freerad /etc/freeradius/3.0/certs/service.radius.*
> ```
>
> - configure eap module to use peap per default
>
> ```
> # /etc/freeradius/3.0/mods-available/eap
> default_eap_type = peap
>
> #private_key_password = whatever
> private_key_file = ${certdir}/service.radius.key
> certificate_file = ${certdir}/service.radius.crt
>
> tls_min_version = "1.2"
>
> cache: enable = yes
> cache: name = ?<somename>.radius"
> cache: persist_dir = "${logdir}/tlscache"
>
> peap: copy_request_to_tunnel = yes...
2007 Nov 11
4
puppetrun fails: "Certificates were not trusted"
...ates: Setting privatekeydir to ''$ssldir/private_keys''
debug: certificates: Setting hostpubkey to ''$publickeydir/puppet1.abc.net.pem''
debug: certificates: Setting privatedir to ''$ssldir/private''
debug: certificates: Setting hostcert to ''$certdir/puppet1.abc.net.pem''
debug: certificates: Setting passfile to ''$privatedir/password''
debug: certificates: Setting localcacert to ''$certdir/ca.pem''
debug: certificates: Setting certdir to ''$ssldir/certs''
debug: ca: Setting cert_inventory...
2023 Apr 12
2
Fwd: ntlm_auth and freeradius
...adius.*
>> ```
>>
>> - configure eap module to use peap per default
>>
>> ```
>> # /etc/freeradius/3.0/mods-available/eap
>> default_eap_type = peap
>>
>> #private_key_password = whatever
>> private_key_file = ${certdir}/service.radius.key
>> certificate_file = ${certdir}/service.radius.crt
>>
>> tls_min_version = "1.2"
>>
>> cache: enable = yes
>> cache: name = ?<somename>.radius"
>> cache: persist_dir = "${logdir}/tlscache&qu...
2023 Apr 12
1
Fwd: ntlm_auth and freeradius
....0/certs/service.radius.*
> > ```
> >
> > - configure eap module to use peap per default
> >
> > ```
> > # /etc/freeradius/3.0/mods-available/eap
> > default_eap_type = peap
> >
> > #private_key_password = whatever
> > private_key_file = ${certdir}/service.radius.key
> > certificate_file = ${certdir}/service.radius.crt
> >
> > tls_min_version = "1.2"
> >
> > cache: enable = yes
> > cache: name = ?<somename>.radius"
> > cache: persist_dir = "${logdir}/tlscache"
> >...
2023 Apr 06
2
Fwd: ntlm_auth and freeradius
Hello Tim, Hello samba-people,
is there an uptodate guide for authenticating via freeradius somewhere?
I have some Ubiquiti APs plus a Cloud Key and I want to authenticate
WLAN clients via WPA2-Enterprise instead of a (shared) PSK.
It seems like
https://wiki.samba.org/index.php/Authenticating_Freeradius_against_Active_Directory
is missing some steps (basic setup of freeradius).
Can you
2004 Apr 30
2
Logon script, help please
...and placed it in the scripts
directory of the server.
The file contains only one line - net time \\ptlserver /SET /y
My smb.conf "Globals" section is:-
[global]
workgroup = PTLTRAIN
netbios name = PTLSERVER
server string = Llandrindod Trainee Server
encrypt passwords = Yes
ssl CA certDir = /etc/ssl/certs
log file = /var/log/samba.%m
max log size = 50
time server = Yes
load printers = No
disable spoolss = Yes
show add printer wizard = No
logon script = scripts\timesync.bat
dns proxy = No
wins server = 172.16.1.50
hosts allow = 172.16.15. 127.
veto files = /*.mp3/
Looking...
2001 Sep 25
3
windoze whitout broswing network (I did something wrong?)
...password* %n\n *changed*
passwd chat debug = No
username map =
password level = 0
username level = 0
unix password sync = No
restrict anonymous = No
use rhosts = No
ssl = No
ssl hosts =
ssl hosts resign =
ssl CA certDir =
ssl CA certFile =
/usr/share/ssl/certs/ca-bundle.crt
ssl server cert =
ssl server key =
ssl client cert =
ssl client key =
ssl require clientcert = No
ssl require servercert = No
ssl ciphers =
ssl version = ssl2or3
ss...
2006 May 06
1
IPsec with racoon2
...8.1.1 netmask 0xffffffff"
static_routes="vpn"
route_vpn="-net 192.168.1.0/24 192.168.1.1"
Without IPsec running, I can ping the remote interfaces 192.168.[14].1 both ways
My racoon2.conf looks like:
setval {
PSKDIR "/usr/local/etc/racoon2/psk";
CERTDIR "/usr/local/etc/racoon2/cert";
};
# interface info
interface
{
ike {
MY_IPV4%lnc0;
};
spmd {
unix "/var/run/racoon/spmif";
};
spmd_password "/usr/local/etc/racoon2/spmd.pwd";
};
# resolver info
r...
2001 Mar 05
1
samba/ssl
Dear users/gurus
Last week I read a msg talking about this but I ignoreds it 'cause I did not
get this problem. Shame on me! Now the lightning stroke my head!
How to get rid of the SSL warnig bellow?
bash-2.01$ smbclient '\\0\' -U user
SSL: Error error setting CA cert locations: error:00000000::lib(0) :func(0) :
reason(0) trying default locations.
added interface ip=xxx.xxx.xxx.xxx
2001 Apr 16
0
SSL CA cert error from smbclient (solved)
Looks like this question was indeed solved prior (finally found the
searchable archive). Solution is to add
ssl CA certDir=/usr/share/ssl/certs
to the smb.conf file (or appearently any other directory for that matter).
Jamin W. Collins
> -----Original Message-----
> From: Giulio Orsero [mailto:giulioo@pobox.com]
> Sent: Monday, April 16, 2001 1:02 PM
> To: 'samba@lists.samba.org'
> Subject: Re:...
2004 Apr 30
0
Re: samba Digest, Vol 16, Issue 45
...r.
>
> The file contains only one line - net time \\ptlserver /SET /y
>
> My smb.conf "Globals" section is:-
>
> [global]
> workgroup = PTLTRAIN
> netbios name = PTLSERVER
> server string = Llandrindod Trainee Server
> encrypt passwords = Yes
> ssl CA certDir = /etc/ssl/certs
> log file = /var/log/samba.%m
> max log size = 50
> time server = Yes
> load printers = No
> disable spoolss = Yes
> show add printer wizard = No
> logon script = scripts\timesync.bat
> dns proxy = No
> wins server = 172.16.1.50
> hosts allo...
2005 Oct 24
0
%U and %u different between XP and Win98
...red/compro/guest' does not exist or is not a directory, when
connecting to [My Documents]
Here is my smb.conf file.
[global]
workgroup = ISASKILLS
server string = Training
load printers = yes
log file = /var/log/samba
max log size = 50
security = share
ssl CA certDir = /etc/ssl/certs
socket options = TCP_NODELAY
[printers]
comment = Canon Bubble Jet 265sp
path = /var/spool/samba
browseable = yes
public = yes
printer = bjc265sp
guest ok = yes
writable = no
printable = yes
[ComPro]
comment = Community Promotions
b...
2005 Oct 25
0
question about accessing XP login names within smb.conf
...0
Linux kernel 2.4.22
Slackware 9.1.0
The XP is XP Pro with all latest Updates and SP's etc. My smb.conf file is:
[global]
workgroup = ISASKILLS
server string = Training
load printers = yes
log file = /var/log/samba
max log size = 50
security = share
ssl CA certDir = /etc/ssl/certs
socket options = TCP_NODELAY
[printers]
comment = Canon Bubble Jet 265sp
path = /var/spool/samba
browseable = yes
public = yes
printer = bjc265sp
guest ok = yes
writable = no
printable = yes
[ComPro]
comment = Community Promotions
b...
2005 Nov 07
0
%u and %U different between Win98 and Win XP Pro
...s" folder for each student,
based on the user name they log on with. Anyway, here is my smb.conf - any
help welcomed.
[global]
workgroup = ISASKILLS
server string = Training
load printers = yes
log file = /var/log/samba
max log size = 50
security = share
ssl CA certDir = /etc/ssl/certs
socket options = TCP_NODELAY
wins support = yes
[printers]
comment = Canon Bubble Jet 265sp
path = /var/spool/samba
browseable = yes
public = yes
printer = bjc265sp
guest ok = yes
writable = no
printable = yes
[ComPro]
comment = Co...