zentyal ldap server with redhat 6 ldap client

[moazrefat]

hello , i'd like to thank you for your great effort and i want to ask about support how to configure zentyal as ldap server and configure redhat 6 as ldap client ,,,,,, redhat can't act as client if there is no cerficates ,,, how to get the certificates from  zentyal to import in redhat 6



thanks in advance

[christian]

redhat can't act as client if there is no cerficates ,,, how to get the certificates from  zentyal to import in redhat 6

What do you mean with this? is your goal (or constraint) to rely on X509 authentication or do you need CA public key so that CA having signed Zentyal's LDAPS certificate is trusted at client level?

[moazrefat]

i need CA public key so that CA having signed Zentyal's LDAPS certificate is trusted at client level?


your fast action is highly appreicated

[christian]

did you try to go to CA menu and export certificate already?

[moazrefat]

yes, but when i imported in redhat it doesn't work ,,, is CA the certificate that is needed to execute ldaps


thanks

[christian]

No. You can (and should BTW) trust the CA, not LDAP certificate.
This is done using the public key not the private one.
And "importing in Redhat" might not be so straightforward. I mean, either you understand where this trust is stored and everything is ok or you don't know yet and import is not necessarily obvious: e.g. java relies, if I'm not wrong, on it's own trustedCA repository.