Switch to ca-cert store for auth ca
This commit is contained in:
parent
0780c5a713
commit
095f8d9c7a
|
@ -11,6 +11,6 @@ URI ldap://ldap1.csclub.uwaterloo.ca ldap://ldap2.csclub.uwaterloo.ca
|
||||||
|
|
||||||
SIZELIMIT 0
|
SIZELIMIT 0
|
||||||
|
|
||||||
TLS_CACERT /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
|
TLS_CACERT /etc/ssl/certs/ca-certificates.crt
|
||||||
TLS_CACERTFILE /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
|
TLS_CACERTFILE /etc/ssl/certs/ca-certificates.crt
|
||||||
|
|
||||||
|
|
|
@ -13,7 +13,7 @@ sudo_provider = ldap
|
||||||
entry_cache_timeout = 600
|
entry_cache_timeout = 600
|
||||||
|
|
||||||
ldap_uri = ldaps://ldap1.csclub.uwaterloo.ca,ldaps://ldap2.csclub.uwaterloo.ca
|
ldap_uri = ldaps://ldap1.csclub.uwaterloo.ca,ldaps://ldap2.csclub.uwaterloo.ca
|
||||||
ldap_tls_cacert = /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
|
ldap_tls_cacert = /etc/ssl/certs/ca-certificates.crt
|
||||||
ldap_tls_reqcert = demand
|
ldap_tls_reqcert = demand
|
||||||
ldap_search_base = dc=csclub,dc=uwaterloo,dc=ca
|
ldap_search_base = dc=csclub,dc=uwaterloo,dc=ca
|
||||||
ldap_schema = rfc2307bis
|
ldap_schema = rfc2307bis
|
||||||
|
|
Loading…
Reference in New Issue