Menu
▾
▴
[Openca-Users] Certificate 0 FAILED (error 64: LDAP-add failed: naming attribute 'email' is not present in entry)
|
From: <joh...@ya...> - 2004-07-27 19:49:38
|
Hello Michael, Finally when I try to update ldap with the normal certificates, it's done sucessfully. But When I try to update with my CA-Certificate, I get this error message: Checking for a special DN where to store CA-certificates ... There is no special DN specified. Adding valid CA-certificates to the LDAP server ... Certificate 0 FAILED (error 64: LDAP-add failed: naming attribute 'email' is not present in entry) I'm filling the request of the CA certificate with all the values. I don't know why this update fails when the normal certificates are updated sucessfully: Exporting valid certificates to LDAP ... Certificate 1 OK Certificate 2 OK Certificate 3 OK Certificate 4 OK Removing revoked certificates from LDAP ... Removing suspended certificates from LDAP ... Then I use a tool, called ldapbrowser\editor v2.8.2 to see which certificates were sucessfully stored in the directory, after connecting to the directory, the ldapbrowser shows me what you can see in the attached screenshot. The only problem I can see here, is that when I made my CA Certificate Request, I used another OU for it: The OU I used for CA certificate was: OpenCA and the OU I used for the rest of the Certificates is: Internet. Is this my problem? Thanks a lot, Johnny --- Michael Bell <mic...@cm...> escribió: > Johnny Gonzalez wrote: > > Hello, > > > > I'm trying to Update LDAP using the Interface > provided > > by http://localhost/ldap and the link > CA-Certificates > > but appears this error message: > > > > Certificate 0 FAILED (error -4: Distinguished name > > conflicts with basedn(s).) > > This errormessage is directly from OpenCA and has > nothing to do with > your LDAP server. The LDAP configuration in > ldap.conf and *node.conf > includes an option basedn which specify the suffix > of the LDAP server. > If this basedn is not the suffix of the subject of > the certificate then > the errormessage appears because the certificate > cannot be inserted into > the LDAP server and it is senseless to try it. > > Michael > -- > ______________________________________________ Yahoo! lanza su nueva tecnología de búsquedas ¿te atreves a comparar? http://www.viralbusquedas.yahoo.es |
