OpenLDAP schema to store OpenPGP keys?
Walter Haidinger
walter.haidinger at gmx.at
Tue Feb 21 23:42:56 CET 2006
On Tue, 21 Feb 2006, David Shaw wrote:
> On Tue, Feb 21, 2006 at 11:12:32PM +0100, Walter Haidinger wrote:
> > On Tue, 21 Feb 2006, David Shaw wrote:
> >
> > > > beause GnuPG looks for PGPServerInfo unter the base DN,
> > > > not under dn="ou=PGP Keys,dc=DOMAIN,dc=COM".
> > >
> > > Not exactly. It looks for PGPServerInfo under each DN returned from
> > > namingContexts in order. It may well check for
> > > "cn=PGPServerInfo,dc=DOMAIN,dc=COM" first, but once that fails, it'll
> > > get to "cn=PGPServerInfo,ou=PGP Keys,dc=DOMAIN,dc=COM" next.
> >
> > As far as I can tell from my slapd logs, it only checks for
> > "cn=PGPServerInfo,dc=DOMAIN,dc=COM" once and stops failing that.
>
> What does:
>
> ldapsearch -h your-ldap-server -x -b "" -s base namingcontexts
>
> return?
dn:
namingContexts: dc=private
This is my base DN (i.e. the suffix specified in slapd.conf).
Should probably be "dc=DOMAIN,dc=COM" following the example above.
> > > I developed this against a 2.0.x version, and it looks like something
> > > has changed. In gpgkeys_ldap.c, try adding:
> > >
> > > unique=1;
> > >
> > > At the top of make_one_attr().
> >
> > I'll try this. Is it ok to stick to 1.4.2?
>
> Yes.
Allright. I'll try this tomorrow.
Walter
More information about the Gnupg-users
mailing list