mirror of
https://github.com/Expand-sys/awx-on-k3s
synced 2025-12-16 05:52:15 +11:00
docs: correct openssl command
This commit is contained in:
kurokobo
parent
01f0b8d0fb
commit
46f132a3d5
1 changed files with 2 additions and 2 deletions
|
|
@ -154,7 +154,7 @@ First of all, you should ensure your CA certificate is mounted and has PEM forma
|
||||||
bash-5.1$ openssl x509 -in /etc/openldap/certs/ldap-ca.crt -text
|
bash-5.1$ openssl x509 -in /etc/openldap/certs/ldap-ca.crt -text
|
||||||
|
|
||||||
# The secret bundle_cacert_secret is mounted as /etc/pki/ca-trust/source/anchors/bundle-ca.crt
|
# The secret bundle_cacert_secret is mounted as /etc/pki/ca-trust/source/anchors/bundle-ca.crt
|
||||||
bash-5.1$ openssl x509 -in /etc/pki/ca-trust/source/anchors/bundle-ca.crt
|
bash-5.1$ openssl x509 -in /etc/pki/ca-trust/source/anchors/bundle-ca.crt -text
|
||||||
```
|
```
|
||||||
|
|
||||||
Note that your certificate file should contain both intermediate CA and root CA, if your server certificate is signed by intermediate CA.
|
Note that your certificate file should contain both intermediate CA and root CA, if your server certificate is signed by intermediate CA.
|
||||||
|
|
@ -178,7 +178,7 @@ Now you can test SSL connection.
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
# This is an example to test connection to LDAP server over SSL using /etc/openldap/certs/ldap-ca.crt
|
# This is an example to test connection to LDAP server over SSL using /etc/openldap/certs/ldap-ca.crt
|
||||||
bash-5.1$ openssl s_client -connect ldap.example.com:636 -no-CAfile -CAfile /etc/openldap/certs/ldap-ca.crt
|
bash-5.1$ echo | openssl s_client -connect ldap.example.com:636 -no-CAfile -CAfile /etc/openldap/certs/ldap-ca.crt
|
||||||
CONNECTED(00000003)
|
CONNECTED(00000003)
|
||||||
depth=2 C = JP, ST = Example State, O = EXAMPLE.COM, CN = rca.example.com
|
depth=2 C = JP, ST = Example State, O = EXAMPLE.COM, CN = rca.example.com
|
||||||
verify return:1
|
verify return:1
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue