I run several SSL enabled services on a single host. Especially since
some of these don't run as root, I want to create a different
certificate, with a different DN, for each service. However, each
service certificates' CN must be the FQDN of the host. The kerberos
principal syntax, "service/FQDN" (eg. "imap/hal.discovery") doesn't
work; the CN must match the FQDN exactly.
Is there a recommended style for synthesizing unique DNs for different
services on the same host?
Thanks,
Jack
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
