S/MIME certificates in LDAP
Bernhard Reiter
bernhard at intevation.de
Thu Nov 23 12:10:07 CET 2006
Hi Stéphane,
On Monday 20 November 2006 12:02, Stéphane Konstantaropoulos wrote:
> I'd like to store public certificates for users in LDAP, does anyone know
> what attribute to use to do that? and what format?
I think this will be in the standards.
We are using userCertificate, but there is also userSMIMECertificate.
(Check ldap://ca.intevation.org).
> Is there a consensus on
> this, i.e. will Kontact and Thunderbird use the same attribute... (and can
> Outlook use LDAP stored certificates).
I cannot say for sure without testing. I do not except to have consensus here.
> I plan to use openca to generate them, do you know if it can directly
> export to LDAP? (there is an LDAP package in openca, not sure what it does)
I do not know.
We are using openssl directly and python and gq to manage the ldap side
for ca.intevation.org.
Bernhard
--
Managing Director - Owner, www.intevation.net (Free Software Company)
Germany Coordinator, fsfeurope.org (Non-Profit Org for Free Software)
www.kolab-konsortium.com (Email/Groupware Solution, Professional Service)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1310 bytes
Desc: not available
URL: <http://lists.kolab.org/pipermail/users/attachments/20061123/c689278c/attachment.p7s>
More information about the users
mailing list