Bug 1276237 - documentation missing to set windows console in ssl mode.
Summary: documentation missing to set windows console in ssl mode.
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Directory Server
Classification: Red Hat
Component: Doc-administration-guide
Version: 9.1
Hardware: Unspecified
OS: Unspecified
high
low
Target Milestone: ---
: ---
Assignee: Marc Muehlfeld
QA Contact: Viktor Ashirov
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2015-10-29 08:14 UTC by German Parente
Modified: 2019-08-15 05:45 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-11-14 13:27:25 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description German Parente 2015-10-29 08:14:48 UTC
Description of problem:

We see this in upstream documentation:

http://www.port389.org/docs/389ds/howto/howto-windowsconsole.html

===========================================================
TLS/SSL

By default, the console expects your key and cert database files in $HOME/.389-console. On Windows, this is usually something like C:\Documents and Settings\\.389-console. So when you use the NSS command line utilities like certutil and pk12util, use the -d argument like this:

certutil -A -d "C:\Documents and Settings\<username>\.389-console" -n "CA Certificate" -t CT,, -i cacert.asc -a    

for example, to add the CA cert from the file cacert.asc encoded in ASCII (PEM) format. Now your Console running on Windows should be able to use https and ldaps.
===========================================================

It could be nice to have this in RHEL documentation, administration guide. We have it for RHEL console but not for Windows in: 



We have this in

7.3.7. Managing Certificates Used by the Directory Server Console

https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/9.0/html/Administration_Guide/managing-certs.html

but it oculd be nice if we could mention just where to install console certs on windows.









 If it is there, I am sorry

Comment 2 Marc Muehlfeld 2016-11-14 13:27:25 UTC
The update for Directory Server 10.1 is now available on the Customer Portal.


Note You need to log in before you can comment on or make changes to this bug.