Novell TIDs
|
2007, 2024 Oskar Wagner
|
CRL Configuration Object
LDAP Mapping
The standard LDAP type for Certificate Revocation Lists limits
the size of the CRL to 64 KB. To change this limitation,
you must create the CRL directory entries with Novell-defined types.
In order for the LDAP distribution points to be found,
you must map the standard LDAP types to the Novell LDAP types
by doing the following:
-
Launch Novell iManager.
-
Log in to the eDirectory as an administrator with the appropriate rights.
-
From the Roles and Tasks menu, select LDAP > LDAP Options.
-
Click the View LDAP Groups tab, then select the LDAP group that
needs to be mapped.
-
Click the General tab, then select the Attribute Map page.
-
Edit authorityRevocationList and set the Primary LDAP Attribute
to ndspkiauthorityRevocationList.
-
Edit certificateRevocationList and set the Primary LDAP Attribute
to ndspkicertificateRevocationList.
-
Edit deltaRevocationList and set the Primary LDAP Attribute
to ndspkideltaRevocationList.
-
Click OK.
-
From the Roles and Tasks menu, select LDAP > LDAP Options.
-
Click the View LDAP Servers tab, then select the server that
hosts the LDAP distribution point.
-
Click the General tab, then select the Information page.
-
Click the refresh button.
This will restart the LDAP service and it will begin using the
correct mapping for the CRL attributes.
For more information on LDAP management, see
Configuring LDAP Services for Novell eDirectory
(http://www.novell.com/documentation/edir88/edir88/data/ahlmb7h.html)
in the eDirectory Administration Guide.
Start
Information
Curiosities
Download
Education
Illuminations
Justice
Roots
Secrets