[Fedora-directory-users] still working instructions through...
Kevin M. Myer
kevin_myer at iu13.org
Fri Dec 9 03:47:09 UTC 2005
Quoting Richard Megginson <rmeggins at redhat.com>:
> Craig White wrote:
>
>> On Thu, 2005-12-08 at 19:11 -0700, Richard Megginson wrote:
>>
>>> Darn it. That's right. With SSL enabled, you must start the
>>> server from the console, in order to provide the pin for the
>>> key/cert db.
>>>
>>> If you want to do unattended server restarts, you have to purchase
>>> a PKCS11 Hardware Security Module or create a slapd-svr1-pin.txt
>>> file in the proper format with the cleartext password in it.
>>>
>> ----
>> OK - important detail
>>
>> slapd-srv1-pin.txt
>>
>> does that go in
>>
>> /opt/fedora-ds/alias ?
>> /opt/fedora-ds/slapd-srv1 ?
>>
> It should go in the alias directory and have the following format:
> Internal (Software) Token:password
>
Is there an equivalent setup for the admin server, either using a
security module, or other means?
Kevin
--
Kevin M. Myer
Senior Systems Administrator
Lancaster-Lebanon Intermediate Unit 13 http://www.iu13.org
More information about the Fedora-directory-users
mailing list