SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG
DONATE




YUM REPOSITORY

 
 

MAN page from Mandriva 2010 apache-mod_authz_ldap-0.26-16mdv2010.1.i586.rpm

CERT2LDAP

Section: Local Commands (L)
Updated: 21/04/01
Index 

NAME

cert2ldap - import a certificate into an LDAP server 

SYNOPSIS

cert2ldap [options] [certificatefile] 

OPTIONS

-hhostname
connect to serverhostname.
-pport
use portportinstead of the usual LDAP port 389.
-i
store the issuer distinguished name of the certificate in the directory.
-s
store the subject distinguished name of the certificate in thedirectory.
-c
store the certificate in binary form in the directory.
-n
store the serial number of the certificate in the directory.
-d
increase debug level.
-Dtargetdn
add all the attributes specified to the entry with distinguished nametargetdn.
-bbinddn
bind as userbinddnto the directory.
-wpassword
use passwordto bind to the directory.
-oowner
create a certificate mapping entry that specifies owneras the owner of the certificate.
-Vversion
use LDAP protocol versionversionto connect to the server.
-B
use "userCertifiate;binary" format for update, some servers seemto require this, others are happy without.

 

DESCRIPTION

Cert2ldapis used to import a certificate into an LDAP directory in such aas to allow the mod_authz_ldapApache module to authenticate and authorize users based on theircertificates.The certificate is either specified as a certificatefilenameargument on the command line or read from standardinput.There are essentially two ways to use the program:either a certificate is added as auserCertifcateattribute to a users node, or a certificate mapping nodeis added somewhere else in the directory, referencing theuser.

The second form is active as soon as one if the options-i,-s,-oor -nare used. The first form uses only the -coption. The correct configuration of the entires can be checked usingthe certfind(1)program.

If the node to be updated does not exist yet, a minimal node is created.However this is only marginally useful in the case of a node containingthe certificate proper. 

SEE ALSO

certfind(1)

 

AUTHOR

Andreas F. Mueller <andreas.muellerAATTothello.ch>


 

Index

NAME
SYNOPSIS
OPTIONS
DESCRIPTION
SEE ALSO
AUTHOR

This document was created byman2html,using the manual pages.