Fedora directory users - Mar 2007 - configuring SSL without using the "check peer no" option

Hi

1. After several FDS 1.0.4.1 installations i have the impresion that there
is a problem with the admin server database certificate initialisation. It
cause a situation were i cant start the manage certificate option in tasks.
2. I am getting an error telling my peer cant trust the server certificate.
When using the option check peer no it solve the problem. are these problem
related?


My goal is to use the SSL for authenticate and encrypt the traffic between
the client (my own code with openLdap API, and PAM/NSS)

I have tried two certificate types
1. from the Linux openssl
2. from Verisign test trial certificate

What do i miss?

How can i fix the verify the server certificate problem?

Thanks in advance
Yoram

Yoram Kahana wrote:
> Hi
>  
> 1. After several FDS 1.0.4.1 <http://1.0.4.1/> installations i have 
> the impresion that there is a problem with the admin server database 
> certificate initialisation. It cause a situation were i cant start the 
> manage certificate option in tasks.
> 2. I am getting an error telling my peer cant trust the server 
> certificate. When using the option check peer no it solve the problem. 
> are these problem related?
>  
>  
> My goal is to use the SSL for authenticate and encrypt the traffic 
> between the client (my own code with openLdap API, and PAM/NSS)
>  
> I have tried two certificate types
> 1. from the Linux openssl
> 2. from Verisign test trial certificate
>  
> What do i miss?
>  
> How can i fix the verify the server certificate problem?
I''m not sure.  I suggest you start here first - 
http://directory.fedora.redhat.com/wiki/Howto:SSL#Console_SSL_Information
>  
> Thanks in advance
> Yoram
> ------------------------------------------------------------------------
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users@redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>