| |
Note
The
Common Name (CN)
, in the following example,
MUST
be
the fully qualified domain name (FQDN) of your ldap server.
First we need to generate the CA:
root# mkdir myCA
Move into that directory:
root# cd myCA
Now generate the CA:[11]
root# /usr/share/ssl/misc/CA.pl -newca
CA certificate filename (or enter to create)
Making CA certificate ...
Generating a 1024 bit RSA private key
.......................++++++
.............................++++++
writing new private key to './demoCA/private/cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:AU
State or Province Name (full name) [Some-State]:NSW
Locality Name (eg, city) []:Sydney
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Abmas
Organizational Unit Name (eg, section) []:IT
Common Name (eg, YOUR name) []:ldap.abmas.biz
Email Address []:[email protected]
There are some things to note here.
-
You
MUST
remember the password, as we will need
it to sign the server certificate..
-
The
Common Name (CN)
,
MUST
be the
fully qualified domain name (FQDN) of your ldap server.
|
|
