Fwd: using gnupg with a secure ldap (ldaps) keyserver
Sanchez the Cactus
sanchezthecactus at yahoo.com
Wed Jul 28 02:19:08 CEST 2004
--- David Shaw <dshaw at jabberwocky.com> wrote:
> On Tue, Jul 27, 2004 at 04:07:50PM -0700, Sanchez the Cactus wrote:
>
> > > > 2) find_basekeyspacedn() isn't working... the call:
> > > > vals=ldap_get_values(ldap,si_res,"pgpBaseKeySpaceDN"); is returning
> > > > NULL, but I haven't had a chance to look into it more yet, though it
> > > > is using the context of "dc=company,dc=com", which I think is not
> > > > the right one.
> > >
> > > No, it should be something like "o=PGP Keys", or at least including
> > > the "PGP Keys" as part of the string. It's pretty clear what is going
> > > wrong, but it is not clear whether this is a problem with your LDAP
> > > server setup or in gpgkeys_ldap.
> > >
> > > I think you said this was set up by your IT dept for PGP users as
> > > well. Does it work with PGP?
> > >
> > > David
> >
> > Yes, it does work with PGP on windows. Hardcoding the context to "ou=PGP
> > Keys,dc=company,dc=com" makes it work. So either gpgkeys_ldap needs to
> know
> > this, or the server needs to provide that information somehow. Not sure
> how
> > PGP manages to figure it out.
>
> Check your slapd.conf file. In the section for the pgp keys, there
> should be a line that looks something like:
>
> suffix "ou=PGP Keys,dc=DOMAIN,dc=COM"
>
> Does that exist?
>
> Also, since it works from PGP on windows, can you check something: in
> the PGP options dialog, click on the "servers" tab. Double click on
> the entry for your keyserver. Is there anything in the "Base DN"
> field?
>
> David
The PGP "Base DN" field contains: "ou=pgp keys,dc=company,dc=com". I'll ask IT
about the sldap.conf file.
-Joe
__________________________________
Do you Yahoo!?
Y! Messenger - Communicate in real time. Download now.
http://messenger.yahoo.com
More information about the Gnupg-users
mailing list