File: enable-start-tls.ldif

package info (click to toggle)
ruby-activeldap 6.0.3-2
  • links: PTS, VCS
  • area: main
  • in suites: bookworm, bullseye
  • size: 1,588 kB
  • sloc: ruby: 18,143; sh: 12; makefile: 5
file content (27 lines) | stat: -rw-r--r-- 895 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
 
# Your LDAP server needs to support StartTLS when you test StartTLS related
# feature. This is a LDIF file for OpenLDAP to do the configuration.
# You can use this file by the following command line on Debian GNU/Linux
# or Ubuntu:
#
#   % sudo usermod -a -G ssl-cert openldap
#   % sudo systemctl restart slapd
#   % sudo -H ldapmodify -Y EXTERNAL -H ldapi:/// -f test/enable-start-tls.ldif
#
# Adding the openldap user to the ssl-cert group is required to read
# certification related files.
version: 1
dn: cn=config
delete: olcTLSCACertificateFile
-
add: olcTLSCACertificateFile
olcTLSCACertificateFile: /etc/ssl/certs/ca-certificates.crt
-
delete: olcTLSCertificateKeyFile
-
add: olcTLSCertificateKeyFile
olcTLSCertificateKeyFile: /etc/ssl/private/ssl-cert-snakeoil.key
-
delete: olcTLSCertificateFile
-
add: olcTLSCertificateFile
olcTLSCertificateFile: /etc/ssl/certs/ssl-cert-snakeoil.pem