Section: Local Commands (L)
Return to Main Contents
cert2ldap - import a certificate into an LDAP server
connect to server
instead of the usual LDAP port 389.
store the issuer distinguished name of the certificate in the directory.
store the subject distinguished name of the certificate in the
store the certificate in binary form in the directory.
store the serial number of the certificate in the directory.
increase debug level.
add all the attributes specified to the entry with distinguished name
bind as user
to the directory.
to bind to the directory.
create a certificate mapping entry that specifies
as the owner of the certificate.
use LDAP protocol version
to connect to the server.
use "userCertifiate;binary" format for update, some servers seem
to require this, others are happy without.
is used to import a certificate into an LDAP directory in such a
as to allow the
Apache module to authenticate and authorize users based on their
The certificate is either specified as a
argument on the command line or read from standard
There are essentially two ways to use the program:
either a certificate is added as a
attribute to a users node, or a certificate mapping node
is added somewhere else in the directory, referencing the
The second form is active as soon as one if the options
are used. The first form uses only the
option. The correct configuration of the entires can be checked using
If the node to be updated does not exist yet, a minimal node is created.
However this is only marginally useful in the case of a node containing
the certificate proper.
Andreas F. Mueller <email@example.com>
- SEE ALSO
linux.jgfs.net manual pages