Re: Issue generating certificate for a Samba AD - index.txt

We have been creating certificates (Root CA, intermediate, end user, smartcard login, etc) for ages. We have set up our own PKI infrastructure using openssl command line tool. If you email us the details/extensions you need your certificates to have, we can generate some test certs for you. How

Issue generating certificate for a Samba AD - index.txt

Hi , trying to generate a certify using openssl copenssl ca -config /etc/ssl/user-openssl.cnf -in dc-req.pem -out dc-cert.pem I get the following : Using configuration from /etc/ssl/user-openssl.cnf Enter pass phrase for ./private/cakey.pem: 139946396877888:error:02001002:system lib

RE: Connection to ADSI edit

Thanks Michael, Yes indeed, I though ssl connection was required and it was failing because of this, but it is not at all Sorry to all for the bad post Thx From: Michael Wojcik [mailto:michael.woj...@microfocus.com] Sent: 18 March 2020 14:12 To: Lionel Monchecourt; openssl-users@openss

Re: Connection to ADSI edit

This has nothing to do with OpenSSL. Neither AD nor ADSI Edit use OpenSSL. ADSI is an API on top of LDAP (and other non-LDAP "providers"), and LDAP can use TLS as a transport, so in principle you might be able to get an ADSI client such as ADSI Edit to connect to an LDAP server that uses OpenSSL

RE: AD with PKI authentication - issue on cert generation

Thanks Matt ! I will let you know if there are any issues further when I will use with the Samba AD server Thx -Original Message- From: Matt Caswell [mailto:m...@openssl.org] Sent: 18 March 2020 12:37 To: Lionel Monchecourt Cc: openssl-users@openssl.org Subject: Re: AD with PKI authentic

Re: AD with PKI authentication - issue on cert generation

On 18/03/2020 11:35, Lionel Monchecourt wrote: > Hi Matt, > Thanks a lot, > Getting the same error for > msUPN=1.3.6.1.4.1.311.20.2.3, I removed it as well > is it by default in openssl as well ? > btw, removing these 2, I can generate my certificate without problem Yes - it exists so remo

RE: AD with PKI authentication - issue on cert generation

Hi Matt, Thanks a lot, Getting the same error for msUPN=1.3.6.1.4.1.311.20.2.3, I removed it as well is it by default in openssl as well ? btw, removing these 2, I can generate my certificate without problem -Original Message- From: openssl-users [mailto:openssl-users-boun...@openssl.org]

Connection to ADSI edit

Hi, I'm trying to get connected through the Microsoft ADSI tool to my server but get the follwing error message : Operation failed error code : 0x80090350 The System cannot contact a domain controller to service the authentication request. Please try again later. I want to set a Widows AD P